Skip to content

AI-enhanced email threats poured in. Barracuda stopped the flow.

Chimera readability score 0.4644 out of 100, reading level.

There were two jobs: Responding to thousands of email threats and closing the security gap that allowed them in.
Takeaways:
- BNBuilders faced a huge wave of advanced, AI-enhanced email threats.
- Barracuda Email Protection delivered the incident-response capabilities needed to remediate thousands of attacks.
- A Microsoft 365 feature, Direct Send, enabled some malicious emails to bypass the email gateway.
- Barracuda support engineers identified and resolved the issue, shutting off the flow of advanced threats.
A fast-growing commercial building contractor with offices across the West Coast, BNBuilders was still using the older, open-source, on-prem email security tools that served it well when it was a smaller company. But as time went on and the company grew, things kept breaking, and the number of email-borne threats was rising steadily. Security became too time-consuming, and it couldn’t scale as the company needed it to.
Finally, the IT team and company leadership decided to implement a modern, robust email security solution. They chose Barracuda Email Protection, part of the comprehensive BarracudaONE cybersecurity platform. Years later, they’ve never considered moving to another vendor.
“I finally wasn’t babysitting those unreliable old systems. Instead, we had a cloud-hosted solution that … was simple and intuitive to use, and completely reliable. … Over the years, as threats evolved, so did our Barracuda Email Protection capabilities.”
— Anthony Albano, IT Director, BNBuilders
Get the full story here, including how Barracuda helped identify and fix a crucial setting that was letting some email threats bypass the gateway.
Battling a wave of next-gen threats
In spring 2025, Anthony and his team upgraded their BarracudaONE cybersecurity platform to implement the full set of Barracuda Email Protection capabilities, including advanced incident response automation, cloud-based backup for Microsoft 365 data and email, security awareness training, and more. But shortly thereafter, the threat environment changed.
“We started getting hundreds, and eventually thousands of AI-generated phishing emails every day. And they were incredibly hard to respond to efficiently. Every subject line was different, so our older tools couldn’t mass-pull them. Sender names were spoofed as the recipient, so we couldn’t use that info. Each message’s malicious link was unique too.”
— Morgan Tickner, Information Security Specialist, BNBuilders
Anthony and Morgan decided they needed to really dig into what Barracuda Email Protection could do. They soon found that the platform’s automated incident-response capabilities were far more flexible and powerful than they’d realized. Once they set it up and put it to work, they were able to detect and remove thousands of malicious emails from user inboxes with very little effort. See how in the full case study.
Eliminating the problem at the source
Even though they had gained the ability to respond quickly and effectively to malicious emails, they still had a problem: How were so many of these emails getting past the email security gateway and into users’ inboxes?
Barracuda support came to the rescue. After a brief investigation, our support engineer figured out that a setting in Microsoft 365 called Direct Send was enabled by default, and that it allowed emails with sender addresses spoofed as coming from internal servers to be delivered directly to user inboxes without filtering.
(For details on this setting, how to disable it, and why you might prefer to leave it enabled, see this article, and this one, from Microsoft.)
Get the full story in this case study, and discover all the ways that BarracudaONE and Barracuda Email Protection made BNBuilders’ infrastructure more secure while also dramatically reducing the amount of time and effort required from Anthony, Morgan and their team. And like them, you may also decide that Barracuda is the kind of long-term cybersecurity partner your organization needs.
The Managed XDR Global Threat Report
Key findings about the tactics attackers use to target organizations and the security weak spots they try to exploit
Subscribe to the Barracuda Blog.
Sign up to receive threat spotlights, industry commentary, and more.
The Email Security Breach Report 2025
Key findings about the experience and impact of email security breaches on organizations worldwide

Facts Only

BNBuilders is a commercial building contractor with offices across the West Coast.
BNBuilders used older, open-source, on-prem email security tools.
The company experienced a rise in email-borne threats as it grew.
BNBuilders implemented Barracuda Email Protection, part of the BarracudaONE cybersecurity platform.
In spring 2025, BNBuilders upgraded its BarracudaONE platform to include advanced incident response automation, cloud-based backup, and security awareness training.
After the upgrade, BNBuilders faced a wave of AI-generated phishing emails.
The phishing emails had unique subject lines, spoofed sender names, and unique malicious links.
Barracuda Email Protection's automated incident-response capabilities helped detect and remove thousands of malicious emails.
Some emails bypassed the email security gateway due to a Microsoft 365 feature called Direct Send.
Barracuda support engineers identified and resolved the issue with Direct Send.
The resolution shut off the flow of advanced threats.
The case study highlights the effectiveness of Barracuda Email Protection in enhancing BNBuilders' email security.

Executive Summary

BNBuilders, a fast-growing commercial building contractor with offices across the West Coast, faced a surge of advanced, AI-enhanced email threats. The company had relied on older, open-source, on-prem email security tools, but as it grew, these systems became unreliable and unable to scale. In response, BNBuilders implemented Barracuda Email Protection, part of the BarracudaONE cybersecurity platform, which provided cloud-hosted, reliable, and intuitive email security. In spring 2025, the company upgraded its BarracudaONE platform to include advanced incident response automation, cloud-based backup, and security awareness training. However, shortly after the upgrade, BNBuilders experienced a wave of AI-generated phishing emails that were difficult to detect and respond to due to their unique subject lines, spoofed sender names, and unique malicious links. Barracuda Email Protection's automated incident-response capabilities enabled the company to detect and remove thousands of malicious emails efficiently. Despite this, some emails were bypassing the email security gateway due to a Microsoft 365 feature called Direct Send, which was enabled by default. Barracuda support engineers identified and resolved this issue, shutting off the flow of advanced threats. The case study highlights the effectiveness of Barracuda Email Protection in enhancing BNBuilders' email security and reducing the time and effort required from the IT team.

Full Take

This narrative presents a compelling case for modern, cloud-based email security solutions in the face of evolving cyber threats. The strongest version of this story underscores the challenges organizations face when relying on outdated security tools and the benefits of upgrading to more robust systems. Barracuda Email Protection is portrayed as a reliable and effective solution that not only addresses immediate threats but also scales with the organization's growth. The mention of AI-generated phishing emails highlights the increasing sophistication of cyber threats and the need for advanced incident response capabilities.
However, it's important to consider the context and potential biases in this narrative. The article is essentially a case study promoting Barracuda's products, which may lead to a somewhat one-sided perspective. While the benefits of Barracuda Email Protection are clearly outlined, there is little discussion of potential drawbacks or alternative solutions. This could be seen as a form of authority games, where the credibility of Barracuda is leveraged to promote its products (ARC-0024 Ambiguity, ARC-0043 Motte-and-Bailey).
The root cause of this narrative is the ongoing arms race between cybersecurity measures and cyber threats. As organizations grow and threats evolve, the need for scalable and adaptable security solutions becomes paramount. The assumption here is that cloud-based, AI-enhanced security solutions are the most effective way to combat these threats, which may not always be the case for every organization.
The implications of this narrative are significant for human agency and dignity. On one hand, robust cybersecurity measures can protect individuals and organizations from malicious attacks, preserving their autonomy and integrity. On the other hand, the reliance on third-party security solutions may raise concerns about data privacy and control.
Bridge questions to consider: What are the potential drawbacks or limitations of cloud-based email security solutions? How do alternative security measures compare in terms of effectiveness and cost? What factors should organizations consider when choosing a cybersecurity solution?
Counterstrike scan: If this narrative were part of a coordinated influence campaign, the playbook would likely involve promoting a specific product or service as the ultimate solution to a pressing problem, leveraging case studies and testimonials to build credibility. While the content does promote Barracuda's products, it does not appear to match this pattern in a concerning way, as it provides a genuine case study with specific details and outcomes.