Do I need a security team to use MailBreach?

No. MailBreach is designed for organizations without dedicated security staff. The dashboard presents findings in plain language with clear recommended actions. Setup takes under 5 minutes and requires no technical expertise beyond admin access to your Microsoft 365 or Google Workspace tenant.

Does MailBreach read my email content?

No. MailBreach only accesses email configuration metadata — inbox rules, forwarding settings, and mail flow configurations. It never reads, stores, or processes the actual content of any email message.

How does MailBreach compare to Microsoft Defender for Business?

Microsoft Defender for Business focuses on inbound threat prevention — blocking phishing emails, malware, and spam. MailBreach focuses on post-compromise detection — finding the hidden forwarding rules attackers install after they gain access. They are complementary: Defender tries to prevent compromise, MailBreach detects what happens if prevention fails.

Can I try MailBreach before committing to a paid plan?

Yes. Every account starts with a free 14-day trial that includes full access to all features. No credit card is required. Connect your tenant and see what MailBreach finds — most customers discover at least one unexpected forwarding rule during their trial.

Built for Small Business

Enterprise Email Security, Small Business Price

You don't need a SOC or a six-figure security budget to protect your email. MailBreach detects hidden forwarding rules and BEC attacks in your Microsoft 365 or Google Workspace tenant. Starting at $99/month.

Start Your Free Trial

14 days free. No credit card required. Protect your business email in under 5 minutes.

Why Small Businesses Are the #1 Target for BEC Attacks

Business email compromise is not just an enterprise problem. According to the FBI's IC3 report, BEC attacks caused over $2.9 billion in reported losses in 2023 — and small businesses were disproportionately affected. Attackers know that small businesses typically lack dedicated security staff, use basic email configurations, and rely on their email provider's default security settings. This makes them easier targets than large enterprises with layered security stacks.

The attack pattern is straightforward: an attacker compromises a single email account through credential phishing, then installs a hidden forwarding rule to monitor all incoming email. They watch for financial transactions — invoices, wire transfers, real estate closings — and insert themselves at the right moment to redirect payments. For a small business, a single successful BEC attack can mean $50,000 to $500,000 in losses, which can be existential.

Most small businesses discover the compromise only after the money is gone. Without proactive monitoring of email forwarding rules, there's no way to detect the attacker's persistence mechanism. The password gets reset, everyone thinks the incident is resolved, but the forwarding rule continues to copy email to the attacker's mailbox silently in the background.

43% of cyber attacks target small businesses (Verizon DBIR)
$2.9 billion in BEC losses reported to the FBI in 2023
Average BEC loss for small businesses: $120,000 per incident
60% of small businesses close within 6 months of a major cyber attack

No Security Team Required

MailBreach was designed from the ground up for organizations without dedicated security teams. Setup takes under five minutes: you connect your Microsoft 365 or Google Workspace tenant through a standard OAuth flow, and MailBreach immediately begins scanning every mailbox for forwarding rules, hidden inbox rules, and suspicious mail flow configurations. There's no software to install, no agents to deploy, and no firewall rules to configure.

The dashboard presents findings in plain language, not security jargon. When MailBreach detects a suspicious forwarding rule, it tells you exactly which mailbox is affected, where email is being forwarded, and what you should do about it. High-severity findings — like a newly created rule forwarding all email to an external address — are highlighted with clear recommended actions. You can remediate with a single click, and MailBreach handles the technical details of disabling or deleting the rule.

For businesses that want fully automated protection, MailBreach's auto-remediation mode (Mode C) can disable high-severity forwarding rules automatically without waiting for manual approval. It applies configurable guardrails to prevent false positives: rules that match your domain allowlist are never auto-remediated, and every action creates a snapshot so you can roll back if needed.

Simple Setup, Immediate Protection

Getting started with MailBreach takes three steps. First, create an account and select your plan. Second, connect your Microsoft 365 or Google Workspace tenant using OAuth — MailBreach requests read-only permissions to scan mailbox rules and forwarding configurations. Third, review your initial scan results and configure your domain allowlist to whitelist any legitimate external forwarding.

The initial scan typically completes within 30 minutes for tenants with up to 100 mailboxes, and within a few hours for larger tenants. After the initial scan, MailBreach runs on a configurable schedule (daily by default) to detect any new forwarding rules that appear. You'll receive email alerts for high-severity findings, so you don't need to check the dashboard constantly.

MailBreach stores only email configuration metadata — never email content. It records which rules exist, what conditions they match, and where they forward email, but it never reads, stores, or processes the actual content of any email message. This makes it safe for regulated industries and simplifies your data handling obligations.

5-minute setup with OAuth — no software to install
Read-only access — MailBreach never reads email content
Daily automated scans with email alerts for new findings
One-click remediation from a plain-language dashboard

Affordable Plans That Scale With You

MailBreach pricing starts at $99/month for up to 50 mailboxes, making it accessible for small businesses and startups. There's no per-user licensing complexity — you pay a flat monthly fee based on your mailbox count tier. Every plan includes the full detection engine, all 12 detection patterns, email alerts, and the remediation dashboard.

As your business grows, your MailBreach plan scales with you. Higher tiers add features like auto-remediation, Slack/Teams integration, API access, and compliance reporting. But the core detection capability is the same across all plans — we don't gate security behind premium pricing.

Every new account starts with a free 14-day trial that includes full access to all features. No credit card is required to start. We believe that once you see what MailBreach finds in your tenant, you'll understand why this layer of protection matters.

Key Capabilities

5-Minute Setup

Connect your Microsoft 365 or Google Workspace tenant via OAuth. No agents, no software, no firewall changes. Start scanning in minutes.

Plain-Language Findings

Every finding is explained in clear language with a recommended action. No security expertise required to understand and respond to threats.

Auto-Remediation

Optionally enable automatic remediation for high-severity threats. MailBreach disables dangerous forwarding rules before you even see the alert.

Compliance-Ready Reports

Generate evidence reports showing your email security posture. Useful for cyber insurance applications, client security questionnaires, and regulatory compliance.

Frequently Asked Questions

Ready to secure your email?

Start detecting hidden forwarding rules in minutes. No credit card required.

Start Your Free Trial

Related Resources

BEC Detection Microsoft 365 Security Google Workspace Security