Collaborate Disseminate
Recently we highlighted one of the most common evasion techniques employed by threat actors in order to keep a phishing site online: geoblocking, or blocking by location. However, many other techniques exist, some that are more subtle and mak… Continue reading Evasion Techniques: User-Agent Blocking
Most phishing campaigns attempt to take over accounts by tricking the victim into divulging their credentials. PhishLabs has uncovered a previously unseen tactic by attackers that uses a malicious Microsoft Office 365 App to gain access to a victi… Continue reading Phishing Campaign Uses Malicious Office 365 App
PhishLabs has detected attempts to compromise Microsoft Office 365 administrator accounts as part of a broad phishing campaign. In the campaign, the threat actor(s) delivered a phishing lure that impersonated Microsoft and their Office 365 brand b… Continue reading Active Office 365 Phishing Campaign Targeting Admin Credentials
The post New Spear Phishing Campaign Impersonates VCs and PE Firms appeared first on Security Boulevard.
Continue reading New Spear Phishing Campaign Impersonates VCs and PE Firms
On a daily basis, around 42% of the global population, or 3.2 billion people, uses some form of social media. Of that number, people spend a daily average of 2.2 hours on these networks, too. These two numbers are exactly why threat actors continu… Continue reading The Vast Social Media Landscape for Phishing Threats
Business Email Compromise (BEC) attacks are the most costly and effective forms of phishing. In most cases, these attacks use highly research social engineering to go after the top brass in a company with a motive of stealing corporate dollars or … Continue reading BEC Attacks: How CEOs and Executives are Put at Risk
Today we are excited to announce the general availability of our enhanced Email Incident Response service. Email Incident Response detects, prevents, and automatically responds to threats that bypass email security technology.
The post PhishLabs E… Continue reading PhishLabs Enhances Email Incident Response Service