Resources

Blog

Untrustworthy Email in Inboxes Reaches All-Time High

Thu, 06/01/2023

In Q1, the volume of emails classified as malicious or do not engage reached nearly a quarter of all reported emails. This is the highest combined volume of these categories since Fortra’s PhishLabs has documented this data point. Of those classified as malicious, threats considered email impersonation or, those lacking known signatures, made up a significant 98.7%. Every quarter, PhishLabs...

Blog

Free Domain Abuse Plummets in Q1 as Staging Methods Shift

Thu, 05/25/2023

Free domain registrations used to stage phishing sites have experienced a significant drop in activity, contributing to just under 2% of phishing abuse in Q1. Free domain registrations and other no-cost means of staging phishing infrastructures are historically a favorite of threat actors. While no-cost methods as a whole did make up the majority of abuse in Q1, the decline in free domains can be...

Webinar

Jun

Is Microsoft Email Security Enough?

10:00 - 11:00am

John Wilson |

Nick Hogg

As Microsoft’s security capabilities continue to evolve, many organizations are questioning how much they should rely on Microsoft for their email security needs. In this upcoming webinar, email security experts from Fortra will discuss enterprise email security requirements and evaluate how Microsoft fits into an organization’s email security strategy and stack. Attend to learn: How to evaluate...

Webinar

Jun

Email Impersonation and Machine Learning

10:00 - 11:00am

John Wilson |

Eli Vovsha

Over 98% of threats reaching user inboxes impersonate individuals or brands to slip past email filters. In this upcoming webinar, Fortra’s Email Security experts discuss how machine learning models can help detect and remove email impersonation threats at scale.

Blog

Top Tactics of BEC Attacks in 2023

Thu, 04/27/2023

Email impersonation is the fastest growing and most successful means of bypassing email security controls. In Q4 2022, the response-based and credential theft attacks that make up email impersonation reached their highest percentage of share of all email threat volume, contributing to more than 97% of attacks reported by end users. In this series, we look at the top email impersonation threats...

Blog

The Rise in Hybrid Vishing: How Spoofed Phone Numbers Are the Top Email Threat to Bypass SEGs

Thu, 04/20/2023

Email attacks using impersonation as their primary means of success are the top threats making it past Secure Email Gateways. These socially engineered messages have gradually increased in volume to overtake more malicious links or attachments typically used in payload campaigns targeting businesses. In this series, we look at the top email impersonation threats based on the reported volume in...

blog

Emotet Returns from Hiatus, Trails QBot in Q1 Volume

Thu, 04/13/2023

QBot and Emotet payloads contributed to more than 93% of reported payload volume in Q1, according to Fortra’s PhishLabs. While QBot represented the majority of attacks, this is the first known activity by Emotet actors since 2022 and the largest spike in Emotet reports since Q2 of last year. Email payloads remain the primary delivery method of ransomware targeting organizations. PhishLabs’...

Guide

Securing Government Data - UK

Wed, 04/12/2023

With nation-state attacks on the rise, and cyber criminals more targeted, professional, and motivated than ever, governments around the world have become dependent on cybersecurity solutions to stay ahead of the latest threats. But with government departments holding valuable data on its citizens, it's vital that they use a solution that can defend themselves against attack and keep that data safe and secure.

Blog

What to Know About Business Email Compromise (BEC) Scams

Thu, 04/06/2023

Business email compromise (BEC) is a dangerous type of email spoofing that targets businesses, aiming to damage them in some way. Overall, BEC “is one of the most financially damaging online crimes,” according to a joint Cybersecurity Advisory by the Federal Bureau of Investigation (FBI), the Food and Drug Administration Office of Criminal Investigations (FDA OCI), and the US Department of...

Blog

What is the Relationship Between Ransomware and Phishing?

Thu, 03/30/2023

Ransomware and phishing are usually put in two separate categories when cyberattack methodologies are discussed. However, ransomware operators are increasingly leveraging phishing tactics to deploy their malicious payloads, and the potential for compromise is exponentiating as a result. Ransomware and Phishing - a match made in heaven Phishing is the number one delivery vehicle for ransomware...

Blog

DRP Solutions Market Guide

Thu, 03/16/2023

The demand for Digital Risk Protection (DRP) is on the rise as cybercriminals are increasingly targeting businesses on channels outside the corporate firewall. According to Frost & Sullivan’s latest Frost Radar Global DRP Report, the traditional security perimeter has changed, and unlike phishing attacks that can be managed and mitigated through internal controls, these threats live on spaces not...

On-Demand Webinar

Is Microsoft Email Security Enough?

Wed, 03/15/2023

As Microsoft’s security capabilities continue to evolve, many organizations are questioning how much they should rely on Microsoft for their email security needs. This video includes email security experts from Fortra discussing enterprise email security requirements and how Microsoft fits into an organization’s email security strategy and stack. Learn: • How to evaluate Microsoft’s role in your...

Blog

Stolen Credit Union Data on Dark Web Hits High in Q4

Thu, 03/09/2023

In Q4, Dark Web activity targeting Credit Unions reached its highest count in five consecutive quarters, according to Fortra’s PhishLabs. Attacks on Credit Unions jumped significantly during the second half of 2022, with threat actors advertising stolen card data from these institutions almost as frequently as National/Regional Banks. Data tied to financial institutions is considered especially...

Blog

Impersonation Represents the Top Social Media Threat in Q4

Thu, 03/02/2023

Social media attacks targeting organizations closed out 2022 nearly 19% higher than Q4 of 2021, according to Fortra’s PhishLabs. Social platforms continue to act as a hotbed for malicious activity, leaving organizations of all sizes vulnerable to impersonation and abuse. As of Q4, businesses can expect an average of 72.54 attacks on social media per month. PhishLabs analyzes hundreds of thousands...

Blog

Response-Based Email Attacks Reach Inboxes More Than Any Other Threat in Q4

Thu, 02/23/2023

In Q4, Response-Based phishing attacks were the top reported threat by end users, according to Fortra’s PhishLabs. While threats categorized as Credential Theft and Malware continue to bypass even the top secure email gateways, this is the second consecutive quarter where Response-Based attacks have led all categories. Response-Based attacks typically lack malicious indicators and instead rely...

event

Mar

Spam Mechanisms in the Secure Email Gateway

9:00 - 9:30am

Dr. Steve Jeffery

There are more than 15 configurable spam mechanisms in the Secure Email Gateway with a choice of local or global policy. Our expert, Dr. Steve Jeffery, Lead Solutions Engineer at Fortra, discusses the spam rules, where they get evaluated, URL detection, and message sanitisation. Learn how controls on the SEG can gain the best results for your organisation. This is one of a series of five webinars...

blog

More than Half of All Phishing Sites Impersonate Financials in Q4

Thu, 02/16/2023

Phishing sites impersonating reputable organizations continue to represent the top online threat to businesses and their brands. In Q4, Financial Institutions were targeted most by credential theft phish, experiencing the largest share of malicious sites recorded since 2021, according to Fortra’s PhishLabs. Within the group, criminals capitalized on the broad customer bases and recognizable names...

Blog

What Is Whaling Phishing & How Does it Work?

Thu, 02/02/2023

“Whaling” phishing fraud attacks target the C-suite of a company which creates high risk of extremely sensitive, mission-critical data being stolen and exposed. Fortunately, protecting the organization from these attacks is possible. Whaling phishing is a type of phishing attack targeting larger, high-value targets, which is why it's called "Whaling." Attackers themselves often pretend to be C...

On-Demand Webinar

Email Encryption with Fortra & Echoworx

Thu, 02/02/2023

Learn about how email encryption can help in providing next-generation email security for both senders and recipients.

Blog

Ransomware Attacks: Why Email Is Still THE Most Common Delivery Method

Thu, 01/26/2023

In this blog, we take a look at why phishing is the most successful delivery of ransomware and what your organization can do to defend your data and your brand.

1
2
3
4
5
6
7
8
9
…
Next page
Last page

Untrustworthy Email in Inboxes Reaches All-Time High

Free Domain Abuse Plummets in Q1 as Staging Methods Shift

Is Microsoft Email Security Enough?

Email Impersonation and Machine Learning

Top Tactics of BEC Attacks in 2023

The Rise in Hybrid Vishing: How Spoofed Phone Numbers Are the Top Email Threat to Bypass SEGs

Emotet Returns from Hiatus, Trails QBot in Q1 Volume

Securing Government Data - UK

What to Know About Business Email Compromise (BEC) Scams

What is the Relationship Between Ransomware and Phishing?

DRP Solutions Market Guide

Is Microsoft Email Security Enough?

Stolen Credit Union Data on Dark Web Hits High in Q4

Impersonation Represents the Top Social Media Threat in Q4

Response-Based Email Attacks Reach Inboxes More Than Any Other Threat in Q4

Spam Mechanisms in the Secure Email Gateway

More than Half of All Phishing Sites Impersonate Financials in Q4

What Is Whaling Phishing & How Does it Work?

Email Encryption with Fortra & Echoworx

Ransomware Attacks: Why Email Is Still THE Most Common Delivery Method

Support

Privacy Policy

Cookie Policy

Impressum

Contact