Category Archives: Internet Security Awareness|Phishing|Threat Intelligence

According to Microsoft’s recent threat brief, email still remains the #1 attack vector, but the good news is 98% of attacks can be prevented by implementing basic security measures.  To stay ahead of today’s most malicious threats, security teams need to vigilantly protect every main attack surface, including email, identity, endpoint, Internet of Things (IoT), cloud […]

The post Microsoft: 6 Key Security Vulnerabilities Putting Your Organization at Risk appeared first on Cofense.

Continue reading Microsoft: 6 Key Security Vulnerabilities Putting Your Organization at Risk→

Author: Max Gannon  Through the first six months of 2023, our Intelligence team has seen alarming changes in the email security and phishing landscape. Most notably, compared to both Q1 and Q2 of the previous two years, HTML attachments used in malicious phishing campaigns have increased dramatically, 168% and 450%, respectively.  This report will focus […]

The post HTML Attachments Used in Malicious Phishing Campaigns Skyrocket: Increase 168% from 2022 and 450% from 2021 appeared first on Cofense.

Continue reading HTML Attachments Used in Malicious Phishing Campaigns Skyrocket: Increase 168% from 2022 and 450% from 2021→

Developing an organization that is resilient to ever evolving email threats comes from building a strong and effective security awareness program. But how do you go about this, what does it include, and more importantly, what should you avoid? Below we’ve set out the ultimate guide featuring the top 12 practices to follow and avoid.  […]

The post Creating a Culture of Awareness: 12 Key Practices to Follow (and Avoid) appeared first on Cofense.

Continue reading Creating a Culture of Awareness: 12 Key Practices to Follow (and Avoid)→

Developing an organization that is resilient to ever evolving email threats comes from building a strong and effective security awareness program. But how do you go about this, what does it include, and more importantly, what should you avoid? Below we’ve set out the ultimate guide featuring the top 12 practices to follow and avoid.  […]

The post Creating a Culture of Awareness: 12 Key Practices to Follow (and Avoid) appeared first on Cofense.

Continue reading Creating a Culture of Awareness: 12 Key Practices to Follow (and Avoid)→

“To err is human” is as true today as it was when Alexander Pope penned the words over 300 years ago. We all make mistakes, but some are much more costly than others. According to Verizon’s 2022 Data Breach Investigations Report, 82% of cybersecurity data breaches involved human error. And IBM’s 2022 Cost of a […]

The post Email Security Awareness Training appeared first on Cofense.

Continue reading Email Security Awareness Training→

“To err is human” is as true today as it was when Alexander Pope penned the words over 300 years ago. We all make mistakes, but some are much more costly than others. According to Verizon’s 2022 Data Breach Investigations Report, 82% of cybersecurity data breaches involved human error. And IBM’s 2022 Cost of a […]

The post Email Security Awareness Training appeared first on Cofense.

Continue reading Email Security Awareness Training→

Found in Environments Protected By: Microsoft    By Tej Tulachan, Phishing Defense Center (PDC)  During the busy self-assessment season in the UK, threat actors take advantage of the heightened online activity to deceive unsuspecting individuals into revealing their sensitive information on fraudulent HM Revenue & Customs (HMRC) self-assessment websites. Phishing Defense Center (PDC) has noted this […]

The post Unmasking HMRC Self-Assessment Phish: How Attackers Outsmart Secure Email Gateways (SEGs) appeared first on Cofense.

Continue reading Unmasking HMRC Self-Assessment Phish: How Attackers Outsmart Secure Email Gateways (SEGs)→

Found in Environments Protected By: Microsoft    By Tej Tulachan, Phishing Defense Center (PDC)  During the busy self-assessment season in the UK, threat actors take advantage of the heightened online activity to deceive unsuspecting individuals into revealing their sensitive information on fraudulent HM Revenue & Customs (HMRC) self-assessment websites. Phishing Defense Center (PDC) has noted this […]

The post Unmasking HMRC Self-Assessment Phish: How Attackers Outsmart Secure Email Gateways (SEGs) appeared first on Cofense.

Continue reading Unmasking HMRC Self-Assessment Phish: How Attackers Outsmart Secure Email Gateways (SEGs)→

Did you know small- and medium-sized businesses (SMBs) are the target of almost half of all cyber-attacks? Considering that on average, a breach takes 207 days to identify and contain, and costs $3 million per incident, most SMBs do not have the time or money to deal with such a catastrophic event. In fact, 60% […]

The post Email Security for the Mid-Market: 3 Reasons Why SMBs Need to Utilize Crowdsourced Intelligence appeared first on Cofense.

Continue reading Email Security for the Mid-Market: 3 Reasons Why SMBs Need to Utilize Crowdsourced Intelligence→

Did you know small- and medium-sized businesses (SMBs) are the target of almost half of all cyber-attacks? Considering that on average, a breach takes 207 days to identify and contain, and costs $3 million per incident, most SMBs do not have the time or money to deal with such a catastrophic event. In fact, 60% […]

The post Email Security for the Mid-Market: 3 Reasons Why SMBs Need to Utilize Crowdsourced Intelligence appeared first on Cofense.

Continue reading Email Security for the Mid-Market: 3 Reasons Why SMBs Need to Utilize Crowdsourced Intelligence→