[Ache In the Head] The Problems With Your Not-So-Secure Email Gateway

Jan 14, 2023 9:59:24 AM By Stu Sjouwerman

I have been doing some research on Secure Email Gateways. The picture is not that pretty. Below I will summarize what I found.

Cybersecurity Experts Weigh in on Modern Email Attacks

Dec 14, 2022 2:03:19 PM By Stu Sjouwerman

Abnormal Security’s CISO, Mike Britton consolidates some of the best advice from a three-part webinar series on the current state of risk found in email-based cyberattacks

Cybersecurity incidents cost organizations $1,197 per employee, per year

Nov 25, 2022 3:39:41 PM By Stu Sjouwerman

This statistic is alarming and underscores the importance of having a robust cybersecurity program in place. According to the Ponemon Institute, the average cost of a data breach is $3.8 ...

Image-Based Phishing and Phone Scams Continue to Get Past Security Scanners

Nov 22, 2022 9:34:34 AM By Stu Sjouwerman

Using the simplest tactic of not including a single piece of content that can be considered malicious, these types of scams are making their way to inboxes every single time.

4 out of 10 Emails are Unwanted as nearly 40% of all Attacks Start with Phishing

Nov 21, 2022 3:59:17 PM By Stu Sjouwerman

New data focused on emails sent through Microsoft 365 highlights the methods used to ensure a successful attack beginning with a malicious email.

Valid Accounts Rank as the Top Initial Access Infection Vector, Putting a Spotlight on Credentials

Nov 17, 2022 1:41:19 PM By Stu Sjouwerman

As ransomware, business email compromise, and phishing attacks continue to escalate, new data sheds light on where organizations need to focus to help put a stop to attack success.

The Rise in Unwanted Emails, Now Found to be Nearly 41%

Nov 14, 2022 9:10:54 AM By Stu Sjouwerman

How many business emails do the recipients actually want? Or, conversely, how many of them are unwanted? A study by Hornetsecurity looked at this question (along with a number of other ...

[Heads Up] Almost 19 percent of phishing emails bypass Microsoft Defender

Oct 9, 2022 1:05:35 PM By Stu Sjouwerman

Check Point Software is one of the world's best-known and largest infosec companies. In September 2021 they acquired email security company Avanan and recently they updated Check Point's ...

92% of Organizations Have Experienced a Security Incident as a Result of an Email-Borne Threat

Aug 11, 2022 9:29:08 AM By Stu Sjouwerman

New data shows that not only are email-borne threats increasing, but that current integrated cloud email security solutions do little to detect and stop advanced email-based threats.

The Top 8 Most Common Types of DNS Records

Aug 10, 2022 9:46:07 AM By Stu Sjouwerman

This article is a good technical overview of DNS that can help you prevent spoofing. This is a cross-post from the EasyDMARC blog, a new KnowBe4 Ventures portfolio company.

Expect More Travel-Themed Phishing Scams as 80% of Americans Plan to Travel

Jul 7, 2022 9:01:18 AM By Stu Sjouwerman

The lure of last-minute deals to get away after staying home for the last 2 years is so strong, scammers are using it to their advantage with scams intent on stealing online credentials.

Email-Based Threats Double as Malware, Credential Phishing, and BEC Detections Increase

Jul 6, 2022 8:02:51 AM By Stu Sjouwerman

Newly released data from TrendMicro about high-risk email threats in 2021 shows where cybercriminals are placing their focus and where yours should be as well.

80% of Organizations Await “Inevitable” Negative Consequences From Email-Born Cyberattacks

Jun 29, 2022 9:26:57 AM By Stu Sjouwerman

With nearly every organization experiencing some form of phishing attack, new data suggests these attacks are improving in sophistication, effectiveness, and impact.

89% of Organizations Experienced One or More Successful Email Breach Types During the Last 12 Months

May 4, 2022 9:29:50 AM By Stu Sjouwerman

With the number of email breaches per year almost doubling in the last three years, organizations still don’t see email security solutions as being an effective means of stopping attacks.

UK ICO Sees a Massive Increase in Targeted Email Attacks

Mar 2, 2022 1:31:34 PM By Stu Sjouwerman

New data obtained from the UK’s Information Commissioner’s Office by think tank Parliament Street shows an unprecedented rise in attacks against the UK’s information rights organization.

20 Year-Old “Right-to-Left Override” Functionality Used in Attacks to Trick Microsoft 365 Users Out of Credentials

Feb 22, 2022 9:01:58 AM By Stu Sjouwerman

Used to disguise malicious file extensions, this legacy functionality is being repurposed in attacks to obfuscate attachment types and steal credentials in an impressive way.

[On-Demand Webinar] Incredible Email Hacks You'd Never Expect and How You Can Stop Them

Feb 14, 2022 3:58:14 PM By Stu Sjouwerman

If you think the only way your network and devices can be compromised via email is phishing, think again!

Cryptocurrencies and Email Extortion Trends

Jul 15, 2021 10:04:39 AM By Stu Sjouwerman

Researchers at GreatHorn have found that 98.7% of extortion emails ask for payment in Bitcoin. Most of these emails aren’t targeted, but enough people will likely fall for them that the ...

[BREAKING] NSA, Partners Release Cybersecurity Advisory on Brute Force Global Cyber Campaign

Jul 1, 2021 12:15:33 PM By Stu Sjouwerman

NSA and its US and British partners (the UK's NCSC and the US FBI and CISA) late this morning released an advisory detailing a Russian campaign ("almost certainly ongoing") to brute-force ...

Low-Grade Ways of Bypassing Email Scanners

May 24, 2021 9:38:59 AM By Stu Sjouwerman

Cybercriminals are replacing common words in phishing scams with synonyms in order to bypass security filters, according to researchers at Avanan. For example, one phishing lure contained ...

Security Awareness Training Blog

View Topics

[Ache In the Head] The Problems With Your Not-So-Secure Email Gateway

Cybersecurity Experts Weigh in on Modern Email Attacks

Cybersecurity incidents cost organizations $1,197 per employee, per year

Image-Based Phishing and Phone Scams Continue to Get Past Security Scanners

4 out of 10 Emails are Unwanted as nearly 40% of all Attacks Start with Phishing

Valid Accounts Rank as the Top Initial Access Infection Vector, Putting a Spotlight on Credentials

The Rise in Unwanted Emails, Now Found to be Nearly 41%

[Heads Up] Almost 19 percent of phishing emails bypass Microsoft Defender

92% of Organizations Have Experienced a Security Incident as a Result of an Email-Borne Threat

The Top 8 Most Common Types of DNS Records

Expect More Travel-Themed Phishing Scams as 80% of Americans Plan to Travel

Email-Based Threats Double as Malware, Credential Phishing, and BEC Detections Increase

80% of Organizations Await “Inevitable” Negative Consequences From Email-Born Cyberattacks

89% of Organizations Experienced One or More Successful Email Breach Types During the Last 12 Months

UK ICO Sees a Massive Increase in Targeted Email Attacks

20 Year-Old “Right-to-Left Override” Functionality Used in Attacks to Trick Microsoft 365 Users Out of Credentials

[On-Demand Webinar] Incredible Email Hacks You'd Never Expect and How You Can Stop Them

Cryptocurrencies and Email Extortion Trends

[BREAKING] NSA, Partners Release Cybersecurity Advisory on Brute Force Global Cyber Campaign

Low-Grade Ways of Bypassing Email Scanners

Search Our Blog

Subscribe To Our Blog

Posts By Topic

Get the latest about social engineering

Subscribe to CyberheistNews

Get the latest about social engineering

Subscribe to CyberheistNews

Products & Services

About Us

Free Tools

Contact Us

Contact Support

Search