Introducing Multi-Vector Threat Protection: Correlated Intelligence, Complete Protection
---
UPDATE (January 19, 2026): Multi-Vector Threat Protection will be made available to all MX-deployed Email Security Cloud Gateway customers by the end of this week.
---
We're pleased to announce that Multi-Vector Threat Protection will be enabled for all MX-deployed Email Security Cloud Gateway customers. Initially launched in December 2025 for customers with CyberGraph or Advanced BEC Protection, MVTP is now expanding to all MX-deployed email security customers. The rollout started on January 19 and by the end of this week all email security customers will be enabled.
Why We Built This
Email security has evolved beyond single-threat detection. Today's attackers coordinate campaigns that combine phishing URLs, fake e-signature services, and human verification steps - exploiting the gaps between isolated security layers. While our multi-context analysis approach has proven effective at analyzing 2-3 key contexts, the modern threat landscape demands broader visibility. Sophisticated attacks now distribute malicious indicators across different threat surfaces to evade traditional detection, requiring a comprehensive approach that captures intelligence from every available source.
What We're Releasing
Multi-Vector Threat Protection expands our threat intelligence platform from select context sources to comprehensive platform-wide integration. The technology correlates signals from multiple contexts to identify threats that evade single-point detection:
Baseline capabilities (all customers):
- Mimecast intel graphs
- Spam indicators
- URL indicators
Enhanced capabilities (customers with CyberGraph or Advanced BEC Protection):
- Customer social graphs (in addition to all baseline sources)
Each context flags suspicious indicators - unknown senders, newly created domain spikes, freemail usage, human verification traps and more. Our platform then aggregates these comprehensive signals, identifying the broader malicious intent that attackers try to hide across multiple attack vectors. Setup is straightforward through our AdCon interface, mirroring the Advanced BEC Protection style policy creation most of our customers are already familiar with.
Here is an example from earlier this year:
How Customers Benefit
- Improved Detection Efficacy - Detect sophisticated attacks that traditional single-point solutions miss by correlating signals from all available contexts, providing comprehensive coverage against coordinated threat campaigns.
- Complete Threat Visibility - All Multi-Vector detections surface in Analysis & Response with a "Multi-Vector" sub-category, consolidating detection results across different security layers and enabling faster threat identification and response.
- Future-Ready Defense - Stay ahead of emerging attack techniques through continuous correlation of global threat intelligence, protecting against AI-generated threats and zero-day campaigns that exploit gaps between isolated security layers.
Getting Started
Multi-Vector Threat Protection is now available for all MX-deployed Email Security Cloud Gateway customers. The activation requirements depend on your customer profile:
- Customers with licenses that do not include Cybergraph: The MVTP policy will appear in your AdCon interface ready for manual activation. You can enable it in either Monitor mode (to observe detections without taking action) or Quarantine mode (to hold suspicious messages for review). We recommend starting with Monitor mode to establish a baseline before moving to Quarantine.
- Customers who have Cybergraph or Advanced BEC in their current package, or who are migrating to our new bundles: MVTP Monitor mode will be activated by default. Review the detections in Analysis & Response, and when you're ready to take action on detected threats, you can manually move the policy to Quarantine mode.
Configuration is quick and easy through your AdCon interface. Follow the steps in this article to learn how.
