Proof of Concept Security Assessment
Comprehensive email security assessment report demonstrating detection effectiveness and actionable insights
PeriodMarch 27, 2026 - April 26, 2026
Organization
ExampleCorp
Contact
noah@example.com
Samples Analyzed
7
Executive Summary
How Trustifi Protects Your Organization
Key capabilities that safeguard your email environment
- Trustifi scanned 66,489 emails and flagged 5,332 detections (emails that would be quarantined in full protection), resulting in a 8.0% detection rate.
- Executives were primary targets in 7 of 7 detected samples, representing 100% of targeted attempts, indicating focused executive-level attack strategies.
- The majority of detections were graymail (4116), with 884 spam, 328 malicious, 4 suspicious, most posing a high risk of unwanted newsletters, marketing, or low-priority bulk communications if delivered.
Inbound Activity
Inbound Trends
Daily volume of processed emails and detections over the report period (detections would be quarantined in full protection)
Total Processed
66,489
Threat Analysis
Classification & Threat Types
How inbound emails were categorized by risk level and which malicious detection types were most common during the report period
General Classification Overview
Leading Category: Graymail
4,116 (77.2%)
Malicious Threat Types
Leading Threat: Phishing
146 (58.6%)
Detection Rate
8.02%
5,332 out of 66,489 emails flagged as detections (would be quarantined in full protection)
Threat Landscape
Source & Target Analysis
Domains that sent the most malicious messages and mailboxes that were targeted most often during the report period
Top Detected Sender Domains
Top Detected Domain: almko.com
1
Top Attacked Mailboxes
Top Mailbox: bob@example.com
135
Threat Sample 1 of 7
Microsoft Quarantine Phishing
Summary
Goal
Deliver a phishing link for credential harvesting.
Description
Email flagged for RFC violations contains a link matching phishing metrics. The message shows structural anomalies in headers and formatting inconsistencies commonly associated with spoofed notifications, increasing the likelihood of credential harvesting attempts.
Consequences
CEO credentials could be stolen, enabling account takeover, business email compromise, and major financial or reputational harm.
Severity
Critical Executive Credential Risk
85/100
What we found
Email · RFC ViolationLinks · Phishing Metrics
Context tags
Email Content
Urgent Security Notification: Account Access Review Required
April 6, 2026 at 02:12 PM
alert0415chwsgc3txnqiwep9nitymanuwuz5mi15chwsgc3txnqiwep9nitymanuwuz5mi@almko.com
To:
Bob Miller <bob@example.com>ExecutiveCEO
Threat Sample 2 of 7
Payroll Adjustment QR Phishing
Summary
Goal
Drive the recipient to scan a QR code and approve a fraudulent payroll adjustment.
Description
An email impersonates a payroll department notification and asks the recipient to review a payroll adjustment using a QR code.
Consequences
Scanning the QR code could lead to credential theft, fraudulent payroll changes, and unauthorized access to employee or finance systems.
Severity
Critical Payroll QR Phishing Risk
88/100
What we found
Email · QR Phishing
Context tags
Email Content
Payroll Adjustment - Review & Approval Required
March 31, 2026 at 09:18 AM
Payroll Department<payroll.department@company-payrollreview.com>
To:
Alice Brown <alice@example.com>ExecutivePresident
Threat Sample 3 of 7
Phishing DocuSign
Summary
Goal
Steal credentials via a spoofed DocuSign request.
Description
Phishing email impersonates DocuSign, urging the user to review and sign a document via a malicious link.
Consequences
Executive credentials could be stolen, enabling financial fraud, sensitive data access, or further attacks on the organization.
Severity
Critical Executive Credential Threat
87/100
What we found
Email · Phishing
Context tags
Email Content
Please complete with DocSign
April 16, 2026 at 09:07 PM
ExampleCorp<contact@pikmybox.com>
To:
liam@example.comExecutiveVice President Finance & Administration
Threat Sample 4 of 7
iCloud+ Subscription Phishing
Summary
Goal
Steal payment credentials via a spoofed iCloud renewal.
Description
Phishing email impersonates iCloud+ support, claiming a billing issue and urging payment info updates. A link flagged by multiple anti-malware
Consequences
Executive payment credentials could be stolen, risking financial loss and unauthorized access to sensitive company data.
Severity
Critical Executive Credential Threat
85/100
What we found
Email · Sender Email ReputationLinks · Multi-Engine Links
Context tags
Email Content
ImmedIate ActIon Needed to ContInue Backups
April 3, 2026 at 08:52 PM
Data Center<support@dreampairshoes.com>
To:
Charlie <charlie@example.com>ExecutiveSenior Vice President
Threat Sample 5 of 7
Payroll Update Social Engineering
Summary
Goal
Solicit payroll information to redirect salary payments.
Description
Business Email Compromise (BEC) identified via threat signature. The email impersonates a trusted contact to request a payroll banking update and redirect payments.
Consequences
Payroll funds could be redirected to attacker-controlled accounts, resulting in financial loss and HR disruption for the organization.
Severity
Critical Payroll Fraud Risk
85/100
What we found
Email · Threat Signature
Context tags
Email Content
Request for Payroll Information Update
March 30, 2026 at 07:33 PM
David Coreas<puqqwra@gmail.com>
To:
Alice Brown <alice@example.com>ExecutivePresident
Threat Sample 6 of 7
SaaS Marketing Spam
Summary
Goal
Deliver unsolicited marketing about SaaS pricing strategies.
Description
Highly promotional bulk advertising email using urgency, exaggerated growth claims, and a strong call-to-action to solicit SaaS revenue consulting.
Consequences
No direct harm; recipient may experience minor inbox clutter or distraction, but no financial or security risk detected.
Severity
Minimal Business Risk
8/100
What we found
Email · Spam Signature
Context tags
Email Content
🚀 LAST CHANCE: Free SaaS Revenue Growth Audit
April 13, 2026 at 11:07 AM
Jeff Mains<jeff@championleadership.com>
To:
Alice Brown <alice@example.com>ExecutivePresident
Threat Sample 7 of 7
Pharmacy Newsletter Graymail
Summary
Goal
Inform subscribers of recent FDA drug recalls.
Description
Classified as graymail by header analysis; content is a pharmaceutical recall newsletter for healthcare professionals.
Consequences
No direct harm; possible inbox clutter or distraction for executive recipient, but no fraud or malware risk detected.
Severity
Minimal Business Risk
8/100
What we found
Email · Graymail Headers
Context tags
Email Content
Pharmacy Learning Network Newsletter: Weekly Recall & Safety Updates
April 16, 2026 at 07:36 PM
Pharmacy Learning Network<newsletters@pharmacylearningnetwork.com>
To:
Bob Miller <bob@example.com>ExecutiveCEO
Managed Detection & Response
Trustifi Email Managed Detection & Response (EMDR)
Beyond traditional email security, Trustifi's dedicated EMDR team acts as your organization's security extension. Our expert security operations center monitors, investigates, and responds to threats 24/7, ensuring your email environment remains secure and compliant.
Threat MonitoringContinuous analysis of quarantined and suspicious emails with expert review
Policy OptimizationTailored security rules and adaptive controls configured for your environment
Custom SignaturesUnique threat signatures and blocklists created to protect your organization
Incident ResponseRapid escalation and investigation of confirmed threats with detailed analysis
Compliance ManagementAutomated configuration for HIPAA, GDPR, PCI-DSS, and other regulatory requirements
Monthly InsightsDetailed reporting with trends, recommendations, and actionable security intelligence