Skip to content

Security Add-on

The Security add-on extends PolicyClue with vulnerability exposure monitoring, anti-phishing protection, and download guard (file extension filtering) for managed browsers and the Outlook add-in.

Features

Vulnerability Exposure

Monitors browser versions across your organization and alerts when browsers have known security vulnerabilities.

  • Automatic scanning: A background worker periodically checks browser versions against a vulnerability database
  • Per-browser tracking: Vulnerabilities are tracked per browser installation with deduplication
  • CVE details: Each vulnerability includes CVE ID, severity level, and CVSS score
  • Alert generation: New vulnerabilities automatically create alerts for administrator review

The vulnerability dashboard displays: - Total vulnerabilities detected - Count of critical/high severity issues - Affected browsers count - Breakdown by severity level - Timeline of vulnerability discoveries - Detailed activity table with CVE information

Anti-Phishing Protection

Protects users from phishing and spoofing attacks when visiting potentially malicious websites.

  • Policy-level control: Enable anti-phishing on specific policies
  • Multiple alert types:
  • security_phishing_indicated - Potential phishing site was identified
  • security_phishing_blocked - User was blocked from accessing the site
  • security_phishing_warning_dismissed - User dismissed warning and proceeded

The phishing dashboard displays: - Total phishing alerts - Blocked attempts count - Dismissed warnings count - Breakdown by alert type - Timeline of phishing events - Detailed activity table

Enabling the Security Add-on

Tenant Configuration

  1. Navigate to Settings > Tenant
  2. Check the Security Add-on checkbox
  3. Save the tenant settings

Once enabled, the Security menu group appears in the navigation with: - Vulnerabilities dashboard - Phishing dashboard

Policy Configuration

To configure anti-phishing for a specific policy:

  1. Navigate to Policies and select a policy
  2. Open the Security tab
  3. Choose an anti-phishing mode:
  4. Disabled (0) - No phishing detection
  5. Report Only (1) - Silently log alerts; the user is not notified
  6. Alert User & Overridable (2) - Warn the user; they can dismiss and proceed
  7. Block if Certain (3) - Block high-confidence phishing; warn on lower-confidence
  8. Save the security settings

The browser extension enforces the selected mode for sites matching that policy.

Alert Types

The Security add-on introduces these alert types:

Alert Type Description
security_vulnerability_detected A new security vulnerability was detected for a browser
security_phishing_indicated A potential phishing/spoofing site was detected
security_phishing_blocked User was blocked from accessing a phishing site
security_phishing_warning_dismissed User dismissed phishing warning and proceeded to the site
security_download_warned A download warning was displayed to the user
security_download_blocked A file download was blocked by a download filter
security_download_warning_dismissed User dismissed a download warning and proceeded
security_attachment_warned Attachment extension matched a download filter - user was warned (Outlook add-in)
security_attachment_blocked Attachment extension matched a download filter - send was blocked (Outlook add-in)

These alerts appear in the main Alerts view and can be filtered by type. They also support webhook forwarding for integration with external systems.