Blog
Phishing with Invisible Ink
Fri, 02/03/2023
You might remember as a child, there was a revelation…invisible ink. Stepping forward to today, there is now a new type of phishing which uses invisible ink, or as it’s also called, ‘zero font’, as a means to beat the spam and phishing filters. Anti-spam / phishing filters work in several different ways; they look for specific words or phrases and there is then a statistical element. If there are 100,000 instances of the same message, it’s probably spam.
Press Release
IT Security Wire: Cybersecurity in 2023: Top Three Predictions
In this IT Security Wire article, cybersecurity experts Eric George and Tom Gorup, Vice President of Security Operations at Fortra’s Alert Logic, share their 2023 cybersecurity predictions.
Originally published in IT Security Wire
"PaaS (phishing-as-a-service) platforms simplify the creation and execution of credential theft phishing attacks which target the customers or employees of...
Blog
What Is Whaling Phishing & How Does It Work?
Mon, 10/03/2022
“Whaling” phishing fraud attacks target the C-suite of a company which creates high risk of extremely sensitive, mission-critical data being stolen and exposed. Fortunately, protecting the organization from these attacks is possible.
Whaling phishing is a type of phishing attack targeting larger, high-value targets, which is why it's called "Whaling." Attackers themselves often pretend to be C...
Press Release
Forbes: 8 Ways To Keep Your Social Security Number Safe From Identity Theft
It’s difficult to control your Social Security number in the wild. In his September contribution to Forbes Advisor, John Wilson discusses the most common scams involving Social Security numbers and provides 8 steps individuals can take to prevent identity fraud.
Originally published in Forbes Advisor:
“For too many of us, our SSNs are already in the hands of miscreants, along with our other...
Press Release
The Last Watchdog: The Drivers Behind Persistent Ransomware and Defensive Tactics to Deploy
In his guest essay for The Last Watchdog, Eric George, Director of Solutions Engineering at PhishLabs by, explains what ransomware is, who the high-stake threat actors are, and how organizations can defend themselves against ransomware attacks.
Originally published in The Last Watchdog
“Ransomware usually starts with a phishing email. An unsuspecting employee will open a legitimate-looking...
Blog
Office 365 + DMARC: Best Practices for Protecting Your Company & Customers From Phishing Attacks
By John Wilson on Mon, 08/15/2022
In 2021, Gartner includes DMARC, or known by its full name as Domain-based Message Authentication, Reporting & Conformance, in its list of top 10 security projects. With very few exceptions, the best way for organizations to prevent getting impersonated in email attacks is to integrate DMARC into their Office 365-based email ecosystems.
To understand why, let’s consider the benefits of deploying...
Datasheet
Agari Phishing Response
Phishing and other email-based attacks account for 94% of breaches, with cybercriminals exfiltrating data mere hours after gaining access. However, it often takes months for businesses to discover a breach—and even longer to remediate it. Traditional security controls rely on blocking cyberattacks at a single point in time when email is delivered, attachments are executed, or URLs are clicked.
In...
Guide
Cosmic Lynx Threat Dossier: The Rise of Russian BEC
Cosmic Lynx is a Russia-based BEC cybercriminal organization that has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks.
In this threat dossier, you’ll discover key details about Cosmic Lynx, including:
How Cosmic targets global corporations with incredibly sophisticated BEC attacks
How Cosmic Lynx exploits DMARC controls to impersonate...
Guide
From SEG to SEC: The Rise of the Next-Generation Secure Email Cloud Architecture
The secure email gateway no longer works for business email compromise and advanced email threats. Discover why you need the Fortra Advanced Email Security.
Guide
Frost Radar: Email Security Report
Frost & Sullivan has released the Frost Radar: Email Security, providing a benchmarking system to help you protect your email from cyber attacks.
Download the report for more information about:
Why email is a top threat vector for cyber attacks, and how working from home has increased the risk
How the email security market will continue to grow as more organizations transition to the cloud,...
Demo
Preview a Product Tour for Agari Phishing Response
Take our quick simulated tour to learn how Agari Phishing Response allows you to:
Prioritize phishing threats
Deliver cost savings
Reduce remediation time
Save your security operation team thousands of hours – all while running alongside your existing infrastructure or other security tools
...
Guide
Scarlet Widow Part 2: BEC Bitcoin Laundry—Scam, Rinse, Repeat
While many cybercriminal gangs scam medium-sized and large corporations, Agari has now uncovered and documented the practices of a Nigeria-based scammer group, dubbed Scarlet Widow, that has evolved a different strategy focused on more vulnerable sectors such as school districts, universities, and nonprofits.
In this report, we uncover:
How Scarlet...
Guide
Scattered Canary Threat Dossier
Business email compromise (BEC) has continued to grow into a billion-dollar industry as cybercriminals turn to it as their preferred scam. But with the West African gang we’ve named Scattered Canary, we have deeper insight into how BEC is connected to the rest of cybercrime, and why it has grown in recent years.
Download the threat dossier to learn:
How Scattered Canary grew from a one-man...
Datasheet
Agari Threat Intelligence Third-Party Integration
Strengthen Your Security Posture
With a continually evolving threat landscape, organizations are under increased pressure to manage security vulnerabilities. They often need to deploy multiple threat intelligence feeds to assist in this process by identifying common indicators of compromise (IOC) and indicators of attack (IOA) and then recommending the necessary steps to prevent attack or...