Category Archives: Threat Intelligence Insights

At Cofense, we have been active in testing, validating, and deploying general AI tools for the last three years – and we have learned a lot. How these tools integrate with our products and processes are constantly evolving, and the trends we are observing may surprise some of you. TL; DR – AI defensive tactics […]

The post Artificial Intelligence and Machine Learning in Email Security: Our Learnings and Results appeared first on Cofense.

Continue reading Artificial Intelligence and Machine Learning in Email Security: Our Learnings and Results→

What is Phishing Detection and Response (PDR)?  In today’s digital world, the strength of an organization’s cybersecurity posture directly influences its resilience against disruptions. Phishing Detection and Response is a critical component of this defensive matrix––it involves identifying, assessing, and neutralizing malicious or suspicious activities within email systems as quickly as possible.   Why Prioritize PDR?  […]

The post Phishing Detection and Response: What You Need to Know appeared first on Cofense.

Continue reading Phishing Detection and Response: What You Need to Know→

By Nathaniel Raymond Agent Tesla has become a massively popular choice of malware for threat actors since its first appearance in 2014 and for good reasons. This vetted Malware-as-a-Service, MaaS, owes its popularity to many attractive factors that Cofense has broken down in a previous Strategic Analysis which include being an affordable malware service option, […]

The post Agent Tesla: The Punches Keep Coming appeared first on Cofense.

Continue reading Agent Tesla: The Punches Keep Coming→

By Dylan Duncan On February 21st, 2024, Cofense Intelligence identified an advanced phishing campaign that targeted the Oil and Gas sector to deliver Rhadamanthys Stealer, an advanced information stealer offered as Malware-as-a-Service (MaaS). The campaign incorporates several complex tactics, techniques, and procedures (TTPs) along with a unique vehicle incident lure that spoofs the Federal Bureau […]

The post Recently Updated Rhadamanthys Stealer Delivered in Federal Bureau of Transportation Campaign  appeared first on Cofense.

Continue reading Recently Updated Rhadamanthys Stealer Delivered in Federal Bureau of Transportation Campaign →

In the complex landscape of cybersecurity, the shadow of nation-state hacking looms large. Recently, the world witnessed a significant breach as Microsoft announced a large-scale attack by Midnight Blizzard, a group of Russian government-backed hackers. The repercussions of this attack have far-reaching consequences and call into question the ability of Microsoft to protect not only […]

The post Midnight Blizzard APT Group’s Attack on Microsoft and What It Means for Email Security  appeared first on Cofense.

Continue reading Midnight Blizzard APT Group’s Attack on Microsoft and What It Means for Email Security →

By Max Gannon Scalable Vector Graphic files, or SVG files, are image files that have become an advanced tactic for malware delivery that has greatly evolved over time. The use of SVG files to deliver malware was made even easier when the tool AutoSmuggle, a program used to deliver malicious files embedded in HTML or […]

The post Car Insurance SVG Files Abused In Emerging Campaigns appeared first on Cofense.

Continue reading Car Insurance SVG Files Abused In Emerging Campaigns→

Malicious email threats bypassing all secure email gateways (SEGs) on the market increased over 100% in the past year.   How do we know? Because we stop thousands of phishing threats bypassing our customers’ SEGs every day.  The email threat landscape is constantly evolving which makes it difficult to stay ahead and combat the attacks […]

The post Annual State of Email Security by the Numbers appeared first on Cofense.

Continue reading Annual State of Email Security by the Numbers→

By Nathaniel Raymond A relatively small malicious car insurance/financial-themed email campaign has been landing in inboxes since late January of this year. These basic malicious emails promise the user a large financial sum via an invitation to click the embedded marketing or Google Ad link that leads to a believed compromised website, blawx[.]com, where they […]

The post Car Insurance Emails Drives for NetSupport RAT Infection  appeared first on Cofense.

Continue reading Car Insurance Emails Drives for NetSupport RAT Infection →

By Dylan Duncan Cofense Intelligence is tracking an advanced campaign that is successfully reaching intended targets in the Oil and Gas industry. The campaign delivers an uncommon, but advanced, Malware-as-a-Service information stealer, the Rhadamanthys Stealer. This new and advanced phishing campaign employs a recently updated Malware-as-a-Service (MaaS) within days of law enforcement’s takedown of LockBit […]

The post New MaaS InfoStealer Malware Campaign Targeting Oil & Gas Sector appeared first on Cofense.

Continue reading New MaaS InfoStealer Malware Campaign Targeting Oil & Gas Sector→

The Cofense 2024 Annual State of Email Security Report sheds light on emerging trends in the cybersecurity threat landscape, highlighting areas of concern and indicating where your security team should focus in the coming year.   The data that informs this report sends a clear message: secure email gateways (SEGs) are not evolving with the […]

The post 2024 Annual State of Email Security Report: What to Expect appeared first on Cofense.

Continue reading 2024 Annual State of Email Security Report: What to Expect→