Is SiftMail the same as sift.email?

No. SiftMail (siftmail.app) is an AI-powered email security and triage platform for end users that connects to Gmail or Outlook. sift.email is a separate, unrelated email-list verification API for marketers. The two products are different companies in different categories with no affiliation.

What does SiftMail do?

SiftMail connects to a user's Gmail or Outlook inbox, automatically categorizes every email, surfaces important messages, bundles promotions and newsletters into digests, and detects phishing, impersonation, and Business Email Compromise attempts. It also provides the Sift Inbox Index, a searchable index of inbox history.

Does SiftMail read my emails?

SiftMail reads email headers and metadata for triage and security analysis. Full message bodies are not stored. The classification models receive only the minimum data required to score and categorize each message.

Does SiftMail work with Outlook?

Yes. SiftMail supports both Gmail and Outlook (Microsoft 365) via OAuth.

Yes — Shield Lite is free forever and includes 1 mailbox, 100 daily scans, basic risk scoring, and a 7-day history scan. Shield Pro is $15 per month with a 3-day free trial. Domain Defense is $39 per user per month for teams.

Home > Threat Library > Spear Phishing

🎯

Spear Phishing

Critical Severity65% of known attack groups use spear phishing as their primary infection vector

Spear phishing is a targeted form of phishing where attackers research specific individuals and craft personalized emails using details about the victim's role, relationships, and activities.

How it works

Attackers research the target via LinkedIn, company websites, and social media
Emails reference real projects, colleagues, or events to build trust
The "sender" is often a spoofed colleague, boss, or business partner
Attachments or links deliver malware or credential-harvesting pages

Red flags to watch for

Email references a real project but with an unusual request
Colleague asking you to bypass normal procedures "just this once"
Unexpected attachment from someone who usually doesn't send files
Slight variations in the sender's email (john.sm1th vs john.smith)
Requests to wire money, change payment details, or share credentials

Real-world example

Subject: Re: Q4 Budget Review — Updated figures
From: sarah.johnson@companynamee.com
“Hi Mike, attached are the updated Q4 budget figures you asked about in our meeting yesterday. Can you review and approve the wire transfer to the new vendor by end of day? Sarah”

How to protect yourself

Verify unusual requests through a separate communication channel (phone call, Slack)
Check email domains character by character for subtle misspellings
Be suspicious of urgency, especially around financial transactions
Use SiftMail's anomaly detection to catch domain-similar senders

How SiftMail detects this

SiftMail's Business tier includes anomaly detection that uses Levenshtein distance to catch domain-similar addresses and homoglyph detection to identify character substitution attacks.

Stop spear phishing before they reach your inbox

SiftMail scores every incoming email and automatically quarantines threats. Free plan available, setup takes 30 seconds.

Protect My Inbox Free Check a Suspicious Email