Financial institutions
Mandated to strengthen email attachment security under Korean electronic finance supervision regulations and the ISMS-P framework. Deployed at Korea Investment & Securities, Daishin Securities, and DB Insurance.
Before mail reaches the inbox — the MARS engine inspects and sanitizes every attachment. From on-premises mail servers (SLE) to Microsoft 365 and Google Workspace (DISARM), protection tuned to your environment.
Supports both on-premises mail servers and cloud email environments.
Mandated to strengthen email attachment security under Korean electronic finance supervision regulations and the ISMS-P framework. Deployed at Korea Investment & Securities, Daishin Securities, and DB Insurance.
Blocks malicious document files arriving over email at ministries and public corporations. Ideal when only the email path needs protection without cross-network integration.
Blocks malicious documents attached to internal employee emails. Closes the supply-chain attack path at the source.
Email attachment security for patient information and research data. Built for regulated-industry compliance.
Verifies email attachments in classified-information environments. Reference: LIG Nex1.
Prevents malware infection from client document receipt. On-premises deployment keeps data inside the organization.
The MARS engine disassembles the binary structure of non-executable files. While antivirus and sandbox products focus on executables, MARS dissects the structure of document files that arrive over email.
An appliance installed in front of the mail server inspects every attachment before it reaches the recipient. Purpose-built for DOCX, XLSX, PDF, and HWP (Hangul Word Processor, Korea's standard document format) non-executable files — disassembles structures that antivirus engines can't see by design.
When detection and blocking aren't enough — add CDR sanitization. Suspect attachments are reassembled into a clean document with macros, scripts, and embedded OLE objects removed. Original layout and comments preserved.
Detects and blocks malicious links inside email bodies in real time. Time-of-click rescan catches URLs that go malicious after delivery.
Auto-ingests national CERT feeds and the latest threat patterns. SLE detections feed back into the ConTI engine to keep raising detection accuracy across every customer environment.
SLE is an appliance that sits in front of the mail server. DISARM connects to your tenant via cloud API. Neither approach changes your existing infrastructure.
Where competing sandbox-based solutions take roughly 3 minutes per file, SecuLetter SLE processes attachments in 12.027 seconds in head-to-head testing. Featured in Gartner Email Security research alongside 40 vendors worldwide.
| Daily throughput (standard) | 160,000 emails/day |
|---|---|
| Daily throughput (enterprise) | 912,000 emails/day |
| Avg. analysis speed | 12.027 seconds (TTA GS Grade 1 benchmark · 200,000-file run) |
| CDR speed (option) | 34 ms per file |
| Supported file formats | 309+ (industry-leading coverage — HWP, PDF, DOCX, XLSX, images, archives) |
| Deployment | On-premises appliance · HA active-active |
| Impact on existing infrastructure | None — inline in front of the mail server. No MX or DNS changes. |
| Certifications and compliance | 100% APT detection (Korean cybersecurity agency benchmark) · TTA GS Grade 1 · Common Criteria EAL2 · Korea public-procurement listed · featured in Gartner Email Security research (one of 40 listed vendors) |
Replaced an incumbent global email security solution with SecuLetter SLE. The MARS engine's structural analysis surfaced non-executable document threats the previous solution had been missing.
Strengthened the finance-sector autonomous security program and email attachment security. Email security architecture recognized in the ISMS-P audit. Zero email-borne malware incidents since deployment.
Closed the cloud email attachment security gap after migrating to Microsoft 365. Deployed in minutes without MX record changes — protection added on top of the existing M365 tenant.
Defended a global Google Workspace collaboration environment against external attachment threats. Simple API integration delivered complete email security without additional infrastructure cost.
Run a benchmark with your own files and samples. Deploys inline without changes to your existing infrastructure—results report typically within 3 days.