Resources

Fortra Guide
Guide

Machine Learning Models in Cloud Email Protection

Traditional email security products struggle to detect email impersonation threats such as Business Email Compromise (BEC) and spear phishing campaigns. These threats consistently bypass defenses that rely on signatures and policies like Secure Email Gateways and native-cloud email filters. This guide breaks down how Fortra uses advanced data science, including machine learning models, to find and mitigate attacks that slip past traditional email defenses.
Advanced Email Threats
Business Email Compromise
Social Engineering
Anti-Phishing Offerings
Anti-Phishing
Fortra Webinar
On-Demand Webinar

QR Codes That Aren't Cool Webinar

Wed, 09/03/2025
Threat adversaries have pivoted their credential phishing and BEC tactics in order to bypass security stacks. In this video, Fortra’s Advanced Email Security expert, Dr. Steve Jeffery, discusses how the QR code has become the carrier of choice for delivering payloads via email and what your organization needs to put in place to stop them.You’ll learn:How human and machine mitigations help ward...
Advanced Email Threats
Business Email Compromise
Spear Phishing
Anti-Phishing Offerings
Anti-Phishing
Fortra Guide
Guide

Anatomy of a Compromised Account

Credential phishing leads to compromised accounts, and compromised accounts lead to more credential phishing.In order to uncover the mechanics, the Agari Cyber Intelligence Division seeded more than 8,000 phishing sites with fake credentials and then monitored what happened next. In this report, you’ll discover more about how cybercriminals access and use compromised accounts, includingHow 50% of...
Advanced Email Threats
Business Email Compromise
Blog

The State of Email Trust: Global DMARC Adoption Trends in Q2 2025

By John Wilson on Mon, 08/04/2025
Fortra analysis of DNS and email authentication settings across the top 10 million domains reveals both progress and persistent issues in email security. Adoption of protocols like SPF and DMARC has grown, but widespread misconfigurations and underuse continue to leave most domains exposed to spoofing, phishing, and business email compromise.
Advanced Email Threats
Business Email Compromise
Domain Impersonation
Email Spoofing
Spear Phishing
Vendor Email Compromise
skull warning over laptop
Blog

Zero-Day Threats: How Cloud Email Security Can Mitigate Risks

By Ravisha Chugh on Mon, 11/25/2024
By Q3 2024, organizations encountered credential theft in nearly 50% of all email security threats they handled, while malware grew by 4% which is the highest amount of volume since Q1. Learn how cloud-based solutions can help detect and prevent zero-day attacks like malware and more.
Advanced Email Threats
Business Email Compromise
Ransomware
Spear Phishing
Anti-Phishing Offerings
Anti-Phishing
Cloud Email Security
Email Security
On-Demand Webinar

Leveraging AI to Combat Email Attacks

By Ravisha Chugh
In today's digital landscape, email remains a cornerstone of business communication, yet its ubiquity makes it a prime target for sophisticated attacks like BEC and brand impersonation. These attacks have a significant impact on financial organizations as they can lead to direct financial and reputational loss. While traditional email security measures help, many fall short. To combat this,...
Advanced Email Threats
Account Takeover
Business Email Compromise
Domain Impersonation
Email Spoofing
Social Engineering
Spear Phishing
Vendor Email Compromise
Anti-Phishing Offerings
Cloud Email Security
DMARC Email Authentication
Email Data Loss Prevention
Phishing Simulation & Training
Triage and Response
Email Security
hand-holding-cloud
Blog

Top Threats to Cloud Email Security and How to Mitigate Them

By Ravisha Chugh on Wed, 10/30/2024
A summary of common threats faced by cloud email systems beyond malware and data breaches, this blog provides actionable tips and best practices for businesses to protect their email systems.
Advanced Email Threats
Account Takeover
Business Email Compromise
Email Spoofing
Social Engineering
Spear Phishing
Vendor Email Compromise
Anti-Phishing Offerings
Anti-Phishing
Cloud Email Security
Email Security
Microsoft Office 365
adv-email-protect-b&w
Blog

Email Protection Strategies for Modern Enterprises

By Monica Delyani on Wed, 10/30/2024
Modern enterprises need to be able to identify the tactics being used by cybercriminals in email attacks, especially those leveraging advanced technologies like AI. Find out what's at stake and how today's email security solutions can help mitigate these evolving attacks.
Advanced Email Threats
Account Takeover
Business Email Compromise
Email Spoofing
Social Engineering
Spear Phishing
Vendor Email Compromise
Anti-Phishing Offerings
Anti-Phishing
Cloud Email Security
Email Security
Microsoft Office 365
email security
Article

BEC: Why This Basic Threat Is Difficult to Detect

Fri, 12/01/2023
Revenue lost to payment fraud saw an increase in every major global region from 2021 to 2022, and odds are your organization is still seeing email impersonation threats in inboxes. But why? This article provides insights on Business Email Compromise to help you understand just why these threats are so effective for cybercriminals.
Advanced Email Threats
Business Email Compromise
AI-Email-Solutions
Blog

The Science Behind the Scenes: How Machine Learning Combats Phishing Attacks and BEC

Thu, 07/20/2023
Because email remains the most ubiquitous form of business communication, it continues to be a favorite attack vector for cybercriminals. Email has always been vulnerable because it was not originally designed with security or privacy in mind. As a result, email security vendors emerged to protect this critical communication channel. In the early days, many vendors used signature or reputation...
Advanced Email Threats
Business Email Compromise
Cat with crown
Blog

The Royal & BlackCat Ransomware: What you Need to Know

Thu, 07/06/2023
The US healthcare sector continues to be aggressively targeted by ransomware operators. Royal and BlackCat are two of the more recent – and highly sophisticated – ransomware threats. These two new flavors of ransomware pose serious potential impacts on the healthcare sector, but there are appropriate mitigation and defense strategies that organizations can take to protect against them. What is...
Advanced Email Threats
Ransomware
Blog

What to Know About Business Email Compromise (BEC) Scams

Thu, 04/06/2023
Business email compromise (BEC) is a dangerous type of email spoofing that targets businesses, aiming to damage them in some way. Overall, BEC “is one of the most financially damaging online crimes,” according to a joint Cybersecurity Advisory by the Federal Bureau of Investigation (FBI), the Food and Drug Administration Office of Criminal Investigations (FDA OCI), and the US Department of...
Advanced Email Threats
Business Email Compromise
Blog

What is the Relationship Between Ransomware and Phishing?

Thu, 03/30/2023
Ransomware and phishing are usually put in two separate categories when cyberattack methodologies are discussed. However, ransomware operators are increasingly leveraging phishing tactics to deploy their malicious payloads, and the potential for compromise is exponentiating as a result. Ransomware and Phishing - a match made in heaven Phishing is the number one delivery vehicle for ransomware...
Advanced Email Threats
Ransomware
Social Engineering
Anti-Phishing Offerings
Anti-Phishing
Blog

Financials & Card Data Top Q3 Targets on the Dark Web

Mon, 12/05/2022
In Q3, credit unions nearly overtook national banks as the top targeted industry on the Dark Web, according to recent data from Fortra’s PhishLabs.
Advanced Email Threats
Business Email Compromise
Email Spoofing
Blog

Emails Reported as Malicious Reach Four-Quarter High in Q3

Wed, 11/23/2022
The volume of malicious emails reported in corporate inboxes has reached a four-quarter high, according to the latest data from Fortra's PhishLabs.
Advanced Email Threats
Business Email Compromise
Data Breach
Ransomware
Social Engineering
Blog

What Is Whaling Phishing & How Does It Work?

Mon, 10/03/2022
“Whaling” phishing fraud attacks target the C-suite of a company which creates high risk of extremely sensitive, mission-critical data being stolen and exposed. Fortunately, protecting the organization from these attacks is possible.Whaling phishing is a type of phishing attack targeting larger, high-value targets, which is why it's called "Whaling." Attackers themselves often pretend to be C...
Advanced Email Threats
Business Email Compromise
Spear Phishing
Blog

What Is Email Spoofing & How You Protect Against It

Tue, 09/20/2022
What is Email Spoofing?Email spoofing is the forgery of an email sender address so that the message appears to have come from someone other than the actual source. Spammers will often spoof emails in order to encourage recipients to open, reply to, or even take action in response to their solicitations. Email spoofing is one of the most common forms of cybercriminal activity, specifically a form...
Advanced Email Threats
Business Email Compromise
DMARC Email Authentication
Video

Protecting Remote Employees from Phishing and BEC Attacks

Thu, 07/28/2022
Email is even more crucial as a collaboration tool while we are all working from home and taking other precautions to stay safe and healthy. Hackers, cybercriminals, and other bad actors are exploiting the COVID-19 pandemic for their own personal gain, and it’s your job to ensure your workforce is protected from harm. How do you enable the productivity of your now remote workforce, while...
Advanced Email Threats
Business Email Compromise
Anti-Phishing Offerings
Anti-Phishing