Proofpoint Email Protection

The University uses Proofpoint as a first line of defense to help protect the University's email against spam, phishing, and unsolicited bulk emails. It's recommended to check your spam/bulk quarantined email list once every 7 days.

You can access your spam/bulk quarantined email list using this link Proofpoint Spam and Low Priority Quarantine "https://digest.mail.columbia.edu:10020".

Proofpoint has only 14 days to keep your spam and low-priority messages. The messages will be deleted after the 14th-day period. There is no way to recover messages after the 14th day.

To report phishing please visit the following link https://www.cuit.columbia.edu/report-phishing

Proofpoint URL Defense
To further protect you from malicious email attempts, URL Defense is used to automatically check every link that is emailed to you for potential phishing or malware scams. You will notice that URLs are rewritten as part of this effort, though you will be sent to the correct website (if the URL is confirmed to be "safe"). 

Proofpoint Secure Email
The purpose of an encrypted email is to protect confidentiality!  Encryption conceals the content of a message by translating it into code. It’s especially useful when you need to send sensitive information that other people should not be able to access. Because email is sent over the internet, it is subject to being intercepted by hackers. Encryption adds a valuable layer of security to ensure that your message can only be read by the intended recipient.

End User Web Application

To open the digest web portal please use the following link.

https://digest.mail.columbia.edu:10020

• Release the selected message(s) from the Quarantine and allow future messages from the sender(s) to be delivered – select the message(s) and click Allow Sender.

• Delete the selected message(s) from the Quarantine and block future messages from the sender(s) to be delivered to your Inbox – select the message(s) and click Block Sender

img

• The currently-selected folder in the left pane displays messages in that folder. In the illustration, the Low Priority Mail – Delivered messages display in the right pane.

• The Options menu in the menu bar provides the following choices:

Request Digest – this choice sends you the latest email Digest.
Refresh – refreshes the right pane. If you use the Delete All choice, use Refresh to display more messages.
Delete All – deletes the currently-displayed messages from your personal Quarantine.

• Select Lists in the left pane to add senders to your personal Safe Senders and Blocked Senders lists.

• Select Profile in the left pane to change your preferences.

Proofpoint URL Defense

In addition to scanning for potentially malicious senders and attachments, Proofpoint scans every link (URL) that is sent to your mailbox for phishing or malware websites. URL Defense rewrites all URLs to protect you in case a website is determined to be malicious after you have already received the message. The link is evaluated every time you click on it to ensure that it is considered safe when it is clicked. To learn more about the URL Defense scanning technology, watch Proofpoint's URL Defense overview video.

Please continue to exercise caution when clicking on any link in an email, especially from unknown senders. Proofpoint URL Defense is the second layer of protection against malicious emails, but scammers are continuously inventing new schemes designed to slip through security measures.

  • If the link is determined to be safe, you will be sent to the URL and you will see no difference.
  • If the link is found to be malicious, you will see the following notification in your browser:
URL Defense notification: "Web Site Has Been Blocked!"
Proofpoint URL Decoder

If you would like to know what the original URL (link) looks like without the URL Defense, you can use the decoder tool below to translate any link you receive in an email message.

To copy the URL in an embedded link, right-click (Ctrl+click on a Mac) on the link, and then select Copy Link Address, then paste it into the decoder.

URL Defense FAQs

No. Websites on the Columbia domain are considered trusted by Proofpoint.

You can use a URL decoder to retrieve the original URL. To copy a URL in an embedded link, right-click (Ctrl+click on a Mac) on the link, and then select Copy Link Address, then paste it into the decoder.

You cannot turn off URL Defense as it provides an important layer of security to keeping Columbia user's data safe.

To embed the URL in text, double-click the word or phrase that you would like to make a link, and then type Ctrl+K (Command+K on a Mac). A window will pop-up and you can enter the URL into the field and save.

No. Even if you look at an email that is years old, the Proofpoint URL Defense link will continue to direct you to the proper URL.

Email Encryption

Launch your email tool and add the word in brackets [encrypt] to the subject field to send an encrypted email message to someone outside Columbia. 

For example:

To: [email protected]

Cc: [email protected]

Subject: [encrypt] Meeting minutes from the quarterly review

Proofpoint Encryption will automatically trigger a rule to encrypt the message because the word [encrypt] is in the message's subject. You must include the square brackets.

Encrypt

External (Non-Columbia Email) Users: Decrypting Secure Messages

The following sections describe how users external to your organization receive and decrypt secure messages.

 

Reading a Secure Message

When you receive a secure message, it will look similar to this in your mailbox:

Secure Message

When you receive an encrypted message, you will see the following text:

You have received a secure, encrypted message from the sender. Click the attachment in the message to launch a browser to authenticate so that you can decrypt and read the message.

Click the attachment SecureMessageAtt.htm to authenticate so that you can decrypt and read the message.

Note: If you see red X icons in the browser, your email client is blocking images. These images are typically the logo or pictures of the sender's organization. You can display the images or ignore them without affecting your ability to read the message.

 

Open the Attachment

If you have not registered for Proofpoint Encryption, you will be prompted to create an account and choose a password on the registration page. In the future, you will not be prompted to register.

If you have already registered or your account already exists, you will be prompted to sign in and provide your password to decrypt the message. A More Info link is available if you need help.

Proofpoint

Note: Your password cannot contain spaces.

Your password will expire after 90 days. You will see a “Days until password expiration” message when you open a secure message. Click the link next to the expiration message to reset your password.

Suppose you forget your password and your administrator assigns a new temporary password. In that case, you will have to reset your password and select new security questions the next time you open a secure message.

Additionally, you can request Proofpoint send you a change password link to your email address by clicking the “Forgot Password."

 

Read Your Message

For security reasons, you will not be able to save the secure message.

Proofpoint Test Message

Click Logout when you are done.

Email Warning Tags

As an additional effort to protect Columbia University users, CUIT has deployed a feature called Email Warning Tags. Email Warning Tags will notify you when an email has been sent following one of the parameters listed below. This notification alerts you to the various warnings contained within the tag.  Email Warning Tags are only applied to emails sent to Columbia University users who receive their mail in MS Office 365 or LionMail.

Personally identifiable information if obtained, can cause among other things; financial and reputational damage to the University and its employees. Phishing attacks often include malicious attachments or links in an email or may ask you to reply, call, or text someone.

As a result, emails with an attached tag should be approached cautiously.

Tag Example:

The tag is added to the top of a message’s body.  The specific message for each tag is displayed in the message to the recipient and also provides a link for further information. The table below illustrates the Email Warning Tags you may see in your messages using the default tag titles and descriptions provided by Proofpoint:

1
2

The following screen shots illustrate examples of tagged messages in your inbox.

3
4
5

These warnings added to emails coming from outside Columbia have become a security best practice and are in place at many universities.  We continue to have Columbia community members be the victims of phishing and other scams that come from outside entities, and this provides a warning to look carefully before clicking or responding.

Email is one of the most common methods for infiltrating an organization's cyber-infrastructure. These tags serve as visual cues to prompt caution and verification before interacting with content received from external services. This assists with compliance to the CIS Critical Security Controls 14.2, "Train Workforce Members to Recognize Social Engineering Attacks".

https://controls-assessment-specification.readthedocs.io/en/stable/control-14/index.html

No, the Email Warning Tags are global and cannot be individually managed.

The Email Warning Tag will be removed from your message when you reply-to or forward a tagged message to an external recipient.

Note: The Email Warning Tag is removed when a message reply or forward is sent to an external email address. If the message is forwarded to another internal email address, such as another employee address, the tag is not removed.