Doppel has launched an email security product aimed at phishing campaigns, extending its social engineering defence platform.
The new offering, Doppel Email Security, is designed to examine threats in the inbox in the context of broader attacker activity and act against the infrastructure behind those campaigns. It sits alongside Doppel's existing Digital Risk Protection and Human Risk Management products.
The launch comes as cybersecurity groups face a rise in social engineering attacks spanning email, text messages, fake domains and social platforms. Doppel said the median user clicks a phishing email in under 60 seconds, underscoring how little time security teams have to identify and contain threats.
Rather than focusing only on whether a single email should be quarantined, the system links suspicious messages to a broader map of attacker infrastructure. Doppel calls that map its 360° Threat Graph, which connects inbox activity with domains, fake profiles and impersonation tools associated with phishing operations.
Broader push
Doppel is positioning the product as part of a broader shift from message filtering to campaign disruption. According to the company, its software uses AI agents to trace phishing threats back to their source and organise takedowns across multiple channels used by attackers.
That approach reflects a wider debate in the email security market over whether conventional filtering methods can keep up with attacks created and adapted using AI tools. Security vendors increasingly argue that static rules and older machine learning systems struggle when attackers rapidly alter language, infrastructure and delivery methods.
Doppel said the product uses natural language detection policies that can be updated continuously when the system misses an attack. This is intended to reduce reliance on fixed rules and make investigations easier for security teams to understand.
Rahul Madduluri, Chief Technology Officer and Co-Founder at Doppel, said the company is arguing for a different approach to phishing defence.
"Modern phishing attacks have evolved into coordinated social engineering campaigns designed to scale rapidly and continuously retarget organizations," Madduluri said.
"But today, we're introducing email security that finally fights back. It starts with an agentic architecture driven by natural language detection policies, rather than blackbox ML or whitebox YARA rules, and supports continuous patching on misses. Furthermore, with Doppel, companies can investigate the broader operations behind malicious campaigns and disrupt them before attackers can reuse the same infrastructure against additional targets. Every successful disruption raises the cost for attackers, changing the economics that make modern phishing attacks scalable and profitable."
Platform expansion
The product adds another layer to Doppel's effort to build a unified platform around what it describes as social engineering defence. Its digital risk product focuses on detecting external threats across channels, while its human risk tools are aimed at employee training and phishing simulations.
With email now added, Doppel is seeking to connect external threat intelligence, user training and inbox protection in a single system. Signals gathered through one part of the platform can also be used to improve detection and response in another, according to the company.
Another element of the launch is the use of AI agents in security operations workflows. Doppel said those agents can tune detection policies, investigate incoming threats and explain the reasoning behind decisions in plain language for security teams.
That emphasis on explainability addresses a long-running concern among buyers of cybersecurity tools. Black-box systems can automate large volumes of analysis, but security teams often want a clearer audit trail when deciding whether to escalate an incident or block a campaign.
A Fortune 500 chief information security officer said the product's focus on infrastructure and campaign mapping marked a change in defensive strategy.
"The industry has spent years focused on filtering threats in the inbox while attackers continued evolving their infrastructure and tactics," the chief information security officer said.
"Doppel's ability to identify malicious sending infrastructure, map the broader campaign and drive coordinated disruption is a meaningful shift in how organizations can defend against social engineering. The combination of AI-native analysis, explainable detection logic and stronger signal correlation gives security teams both better visibility and greater confidence in responding to emerging threats."
Growth claims
Doppel also said demand for its wider platform has increased over the past four quarters. It said it more than tripled annual recurring revenue during that period, with customers across financial services, healthcare, energy, technology, manufacturing and media.
The company did not disclose absolute revenue figures or customer numbers. Still, the launch suggests Doppel is seeking a bigger share of security budgets as organisations look for tools that address social engineering as a cross-channel problem rather than an email-only issue.
Doppel's argument is that phishing can no longer be treated as a series of isolated inbox events when attackers reuse the same domains, identities and kits across multiple targets and platforms.
It said the system is intended to help security teams investigate those links and act before attackers can reuse the same infrastructure against additional victims.