CyberScope is a Madrid-based Managed Security Provider (MSP) serving customers across EMEA with additional clients in the U.S. and South America. The team began working with IRONSCALES in 2019, first adopting Security Awareness Training (SAT) and later expanding to the full protection suite, including Account Takeover (ATO) and Business Email Compromise (BEC) defenses. Familiarity and trust in the IRONSCALES approach helped jumpstart the partnership.
CyberScope observed a rise in credential-theft intrusions that led to internal account takeovers in Microsoft 365. Once a mailbox was compromised, attackers leveraged the legitimate account to send follow-on lures to colleagues, exploiting existing trust relationships. These internally sourced messages could bypass upstream filters and customer gateways, allowing an attack to propagate quickly before remediation.
Operationally, many prospects arrived with a Secure Email Gateway mindset—expecting static block/allow lists and deterministic rules —while some raised onboarding questions about requested permissions. These expectations added friction to rollouts even as the primary need was rapid detection and removal of ATO/BEC campaigns originating from legitimate accounts.
CyberScope deploys IRONSCALES via native API integration to Microsoft 365 and Google Workspace, avoiding MX changes and mail-flow disruption. Operating at the mailbox level, the platform’s self-learning detection analyzes sender reputation, message content, and behavioral signals, then applies automated remediation that clusters and removes related messages across user inboxes. The report-phishing button and AI-powered guidance are enabled through the same API, requiring no endpoint installations.
IRONSCALES is explicitly defined as the front-line, automated defense—its job is to stop the threat and contain the incident at the email level. Endpoint tools are clearly designated as the final, last-resort countermeasure, ensuring that the client understands they have multiple, distinct safety nets.
CyberScope noted the following among its most impacted areas: