Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Cybercriminals Target Execs in Microsoft 365 Credential Attack to Launch Internal BEC Scams

Aug 11, 2020 9:30:40 AM By Stu Sjouwerman
A new phishing attack spotted in the wild by security researchers at Trend Micro demonstrates how compromised data in an initial cyberattack is purposed in subsequent attacks.
Continue Reading

Leaked U.S.-UK Trade Documents Show How Devastating Compromised Email Can Be

Aug 6, 2020 4:15:57 PM By Stu Sjouwerman
An ongoing criminal investigation highlights how classified documents stolen by Russian hackers from former U.K. trade minister Liam Fox may have been used to impact the British 2019 ...
Continue Reading

[Heads Up] The First-Ever Russian BEC Gang, Cosmic Lynx, Was Uncovered. They Spear Phish Multinational & Fortune 500 Senior Executives

Jul 7, 2020 10:13:48 AM By Stu Sjouwerman
“This is a historic shift to the global email threat landscape and portends new and sophisticated social engineering attacks that CISOs around the world must brace for now,” according to ...
Continue Reading

‘New VPN Configuration’ Email Tricks Microsoft 365 Users Out of Credentials

Jun 24, 2020 4:17:48 PM By Stu Sjouwerman
Scammers are taking advantage of the prominent use of VPNs by remote workforces to send out this very topically relevant phishing email that just wants to steal your credentials.
Continue Reading

Microsoft 365 to Provide Detonation Details About Malicious Email Content

Jun 19, 2020 4:29:28 PM By Stu Sjouwerman
In a step towards educating customers on why attachments and URLs are deemed “malicious”, Microsoft’s is set to augment its Advanced Threat Protection product in July.
Continue Reading

Excel Macros Bypass Your Filters and Slip in Malware Payloads

Jun 4, 2020 9:56:26 AM By Stu Sjouwerman
Researchers at Lastline warn that attackers are increasingly utilizing Excel 4[.]0 macros to deliver malware while avoiding detection by security products. Excel 4[.]0 (XL4) macros were ...
Continue Reading

Organizations Need To Be Wary Of Home Worker Phishing Risks

Mar 19, 2020 5:31:33 PM By Stu Sjouwerman
Security experts warn that phishing attacks against home workers will rise.
Continue Reading

FTC Alert: Coronavirus Scammers Love Scary Bad News

Feb 11, 2020 4:19:10 PM By Stu Sjouwerman
Scary news stories in the headlines always bring out the bad guys looking to make a quick illegal buck.
Continue Reading

How Can You Check If Your Email Is Compromised?

Sep 16, 2019 6:52:18 AM By Stu Sjouwerman
Rudy Friederich, a KnowBe4 friend at Marshal Security LLC sent me the following interesting tips related to finding out if you are the victim of Business Email Compromise. He wrote:
Continue Reading

DMARC and Its Place in Email Security

Sep 10, 2018 2:31:59 PM By Stu Sjouwerman
Dealing with business email compromise (BEC) requires people, process, and technology. As we've noted before, the problem is growing. Harder to detect and evolving in sophistication, ...
Continue Reading

New Large Email Security Gap Analysis Shows a Massive 15% Failure Rate

Apr 23, 2018 10:00:00 AM By Stu Sjouwerman
We thought it was bad when we saw Cyren's recent analysis that 10.5% of bad emails made it through the filters. It could even be worse than that. "Mimecast's latest ESRA (email security ...
Continue Reading

New Security Tool: Mailserver Security Assessment [It's Free]

Apr 5, 2018 9:56:49 AM By Stu Sjouwerman
Do you know what's getting through your mail filters?
Continue Reading

Email Security Vulnerability Affects Half of the Internet's Servers

Mar 6, 2018 5:45:27 PM By Stu Sjouwerman
Our friends at Bleepingcomputer wrote: "A critical vulnerability affects hundreds of thousands of email servers. A fix has been released but this flaw affects more than half of the ...
Continue Reading

Email Security Gap Analysis Shows 10.5% Miss Rate

Dec 14, 2017 5:04:54 PM By Stu Sjouwerman
Aggregated results show 10.5% average rates at which enterprise email security systems miss spam, phishing and malware attachments. Here is a summary of findings of email security systems ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews