I have created an internal tool for my company. They are plugins that are installed in the browsers for the computers owned by the business, and reports the domain when you open a new browser or tab with a url that you did not manually typed. If blacklisted, it completely blocks the browser. If it is the first time we see the domain, we display a pop up “think before you act” and the it department will dive deep to whitelist it.
The first week there is a bit of noise while we whitelisted the common domains used by the users. After that it really puts you back on alert when you clicked on a email that takes you to new domains - that could be used for phishing.
The first week there is a bit of noise while we whitelisted the common domains used by the users. After that it really puts you back on alert when you clicked on a email that takes you to new domains - that could be used for phishing.