Resources

Blog

Microsoft Office 365 + Cloud Email Gateway: All You Need in a Cloud-First World

Tue, 07/30/2024
According to a recent Cloud Security Alliance report, 98% of organizations worldwide use cloud services, including SaaS applications, complete cloud-native networks, and email services. It’s an overdue modernization that eliminates physical infrastructure to drive cost savings and integrate services for improved productivityChasing this move, cybercriminals intent on account takeover are evolving...
Anti-Phishing Offerings
Anti-Phishing
DMARC Email Authentication
Microsoft Office 365
Blog

Active Phishing Campaign: Tax Extension Help Lure

Tue, 06/04/2024
Active Phishing Campaigns are coordinated attacks that Fortra has observed bypassing email security gateways and filtering tools. The following analysis includes examples, high-level details, and associated threat indicators. Sample Email Lure Sender VerificationSender’s Email: ogawa@kidscorp[.]jp Sender’s Name: Beth KolcunReply-To Address: beth...
Blog

From Secure Email Gateway to Next-Gen Secure Email

Fri, 05/24/2024
The secure email gateway (SEG) worked for decades, no doubt. It was truly the first line of defense against email-based threats that took advantage of people and technology to enable fraud. Those of us who have dedicated our lives to improving this industry are grateful for the work of companies like Symantec and Proofpoint, which have spent years protecting people and organizations from viruses...
Blog

Active Phishing Campaign: Yousign HR Lure

Thu, 05/23/2024
Active Phishing Campaigns are coordinated attacks that Fortra has observed bypassing email security gateways and filtering tools. The following analysis includes examples, high-level details, and associated threat indicators. Sample Email Lure Sender VerificationSender’s Email: [email protected] Sender’s Name: Yousign for HR...
Blog

Active Phishing Campaign: Meta Business Support Chat

By Monica Delyani on Tue, 05/07/2024
Active Phishing Campaigns are concerted, coordinated attacks that Fortra has observed bypassing email security gateways, like SEGs, and filtering tools. The following analysis includes examples, high-level details, and associated threat indicators. As of this posting, Fortra has automatically detected and removed 53 instances of this threat across multiple customer email environments. Sample...
Anti-Phishing Offerings
Anti-Phishing
Phishing Simulation & Training
Triage and Response
Blog

DMARC: The Next Step in Email Hygiene and Security

Tue, 05/07/2024
In 1971, Ray Tomlison developed the first email service while working at The Defense Advanced Research Projects Agency (DARPA). This development changed how we communicated. However, even though this was an exceptional tool, it was not very user-friendly, requiring users to have specific software installed on their computers.In 1996, Sabeer Bhatia...
Anti-Phishing Offerings
email spoofing
Blog

How to Protect Against BEC from Inception to Inbox

By Monica Delyani on Mon, 05/06/2024
What Is Business Email Compromise (BEC)?Business email compromise (BEC) is a dangerous and pervasive type of email spoofing that targets businesses, aiming to damage them in some financial or reputation-based way. It does so via deceptive tactics, such as CEO or executive impersonation, allowing BEC attacks to evade security filters, leading to fraud, compromised accounts, and data leakage.Other...
Blog

Fortra Named Top Player in Radicati's 2024 Secure Email Market Quadrant Report

By Monica Delyani on Wed, 04/03/2024
Fortra has been recognized as a “Top Player” in The Radicati Group’s Secure Email Market Quadrant, 2024. The Radicati Group’s analysis found that Fortra provides both breadth and depth of functionality, while shaping the market with innovative technology and a compelling strategic vision. As the report illustrated: "Fortra’s Cloud Email Protection brings together an impressive set of solutions...
Blog

O365 Active Phishing Campaign with Verizon Invoice Lure

By Monica Delyani on Mon, 04/01/2024
Recent O365 Active Phishing Campaign Active Phishing Campaigns are concerted, coordinated attacks that Fortra has observed bypassing email security gateways, like SEGs, and default filtering tools. The following analysis includes examples, high-level details, and associated threat indicators. As of this posting, Fortra has automatically detected and removed 46 instances of this threat across...
Active Phishing Campaign
Cloud Email Protection
Blog

The Email Security Gaps in Your Cloud

By Ravisha Chugh on Thu, 03/28/2024
According to Gartner, Microsoft lacks the ability to detect and eradicate 20% of the advanced email threats. Email security expert, Ravisha Chugh, shares why current cloud email security solutions are insufficient against advanced email threats, and why she's excited to be a part of Fortra's Cloud Email Protection.
Cybersecurity
Blog

How Banks are Adapting to Digital Disruption and Data Privacy Regulations

By Monica Delyani on Mon, 03/25/2024
Digital disruption, changing consumer demographics and preferences on how they engage with their banks, along with burgeoning regulatory requirements are having far-reaching repercussions on banking. And banking executives are feeling the pressure!Digital DisruptionBanks that resist digital transformation will be punished by their customers, experiencing a marked erosion in profit margins. In...
Data Compliance
Blog

How Fortra's Clearswift Secure Email Gateway Aligns to NCSC's Email Security Guidelines

Tue, 03/12/2024
Working in cybersecurity is one of the most challenging roles in the organisation. Not only are you tasked with keeping the business and its data safe and secure, but you must do so in the face of ever-increasing professionalism and sophistication on the part of cybercriminals.There are more threats than ever before, and the consequences of a data breach are more significant too. In recent Fortra...
Data Compliance
Email Security
Encryption
March Madness
Blog

March Madness Challenge for Cybersecurity Professionals

Mon, 03/11/2024
Let the "madness" begin! The NCAA Basketball tournament is different for everyone. Some experience madness after a gut-wrenching triple overtime victory by their alma mater, while others after a buzzer-beater shot from half-court by a 16th-ranked Cinderella underdog that instantly knocks out one of your final four selections. However, to me there is nothing more maddening, in the delightful sense...
Email Data Loss Prevention
Email Security
Web Security
Blog

Social Media Attacks Focus on Financials, Executives in Q4

By Jessica Ryan on Thu, 03/07/2024
In Q4, impersonation threats made up more than 45% of total attacks on social media, with the vast majority targeting banking and financial services. Impersonation on social media continues to grow, with threats specifically targeting corporate executives responsible for driving the majority of volume for three consecutive quarters.The average number of social media attacks per business has...
set-up-dmarc-policy
Blog

What is a DMARC Policy?: The 3 Types, Which to Implement & Other Requirements

Wed, 02/28/2024
What is DMARC Policy?In this post, we’ll briefly explain what a DMARC policy is, how to set up your DMARC email record, what the three types of DMARC policies are and when to implement each one, and how to diagnose and fix any issues associated with it. Basically, your DMARC policy tells email receivers what to do with illegitimate or possibly fraudulent emails—whether to reject, quarantine, or...
DMARC Email Authentication
Blog

O365 Volume Up in Q4 as Cybercriminals Target Brands in Credential Theft Attacks

Tue, 02/27/2024
The majority of malicious emails reported in user inboxes contained a link to a phishing site, making credential theft emails the attack method of choice for cybercriminals in Q4. Credential theft made up nearly 60% of all reported incidents, with more than half of the volume attributed to O365 attacks. Despite the threat actor preference toward this threat type, credential theft attacks declined...