Resources

fingers typing on laptop
Blog

Cybercriminal Focus in the New Year – Top 2024 Threat Trends

Fri, 01/12/2024
Criminals are constantly innovating ways to enhance deliverability and increase the success of their campaigns. Email phishing remains one of the most significant threats to organizations, but a growing number of campaigns are first touching victims via non-traditional lures or through engagement on platforms where users are more susceptible to scams. Understanding how online threats are evolving...
Blog

Getting the Board on Board: Explaining Cybersecurity ROI

Fri, 01/05/2024
In this Tripwire guest blog, we break down how to best communicate the significance of a cybersecurity investment. Despite increasing data breaches, ransomware attacks, and assorted cyber threats, convincing the Board of Directors to invest in robust cybersecurity isn't always easy for many businesses. The challenge originates mainly from the need to demonstrate a quantifiable Return On...
Blog

Dark Web Threats Targeting the Airline Industry

Tue, 12/19/2023
The allure of airline status and points, along with the abundance of personally identifiable information (PII) of customers and employees, make the airline industry a prime target for threat actors on the dark web. Depending on the goal of the actor and the nature of the stolen data, criminals can find airline-specific materials for sale on a variety of markets.Nick Oram, security operations...
Datasheet

Protecting Information Across the Defense Supply Chain

Clearswift supports organisations to comply with the Defense Cyber Protection Partnership cyber risk control requirements that seek to protect UK military capability throughout the MOD supply chain.Business ProblemIn the face of cyberattacks being recognised as a Tier 1 threat within the National Security Strategy, the UK seeks to secure a truly competitive, sustainable, and globally successful...
On-Demand Webinar

Introduction to Fortra’s Cloud Email Protection Platform

Advanced email threats continue to be a stark reality for enterprises. Even with Secure Email Gateways in place, deceptive attacks like BEC, targeted social engineering ploys, and spear phishing attempts can still get into user inboxes. In this video, Fortra’s Advanced Email Security experts discuss how Fortra’s Cloud Email Protection, a new integrated cloud email security platform, delivers multi...
Datasheet

Suspicious Email Analysis

Detect, Analyze & Mitigate Advanced ThreatsEnterprises struggle to stop email threats from routinely reaching user inboxes, leading to Business Email Compromise (BEC) and ransomware attacks. While users become more adept at identifying suspicious emails and enterprises invest in increasingly sophisticated email security stacks, threat actors continue to deploy emails designed to trick employees....
Advanced Persistent Threats (APT)
Anti-Phishing Offerings
email security
Article

BEC: Why This Basic Threat Is Difficult to Detect

Fri, 12/01/2023
Revenue lost to payment fraud saw an increase in every major global region from 2021 to 2022, and odds are your organization is still seeing email impersonation threats in inboxes. But why? This article provides insights on Business Email Compromise to help you understand just why these threats are so effective for cybercriminals.
Advanced Persistent Threats (APT)
Business Email Compromise
Blog

Brand Threats Masterclass: Experts Reveal Top Attacks and Defense Tactics

Thu, 11/30/2023
There is little doubt that AI-fueled impersonation campaigns and novel attacks via non-traditional channels have emerged as a primary concern for security teams. Brand impersonation is on the rise, with nearly 40 look-alike domains targeting brands each month. On social media, impersonation attacks account for almost half of all threatening content. And online counterfeit campaigns are...
Blog

How Organizations Can Use Dark Web Intelligence

Thu, 11/09/2023
The scope of intelligence on underground marketplaces is vast and navigating the dark web in search of brand mentions and potential threats can be time-consuming and complex. In order to proactively defend against attacks and mitigate the threat of leaked information, organizations should consistently monitor marketplaces and forums for data pertaining to their brand. If questionable data is...
Blog

Q3 Payload Report

Thu, 10/26/2023
QBot, the leading payload family in Q3, was disrupted as part of a coordinated, multinational operation led by the FBI on August 29, 2023. This resulted in the removal of 700,000 QBot payloads from infected devices across the globe, and interrupted the activity of one of the most active malware families since the former juggernaut Emotet, which was disrupted in 2021.While QBot led all other...
First Line of Defense Phishing
Blog

Are Broad Email Security Policies Slowing You Down?

Tue, 10/24/2023
Creating policies for your organization's email security can be complex, time consuming, and even stressful. There are nearly a thousand exceptions that make a case for why policy development and deployment cannot be a standard one-size-fits-all practice. Learn how Fortra's Clearswift can keep your organization safe without slowing you down.
Email Security
Blog

Threat Actor Profile: Strox Phishing-as-a-Service

Thu, 10/12/2023
Threat Background & HistoryBeginning in the first half of 2022, Fortra has monitored a significant ongoing upward trend in fraud activity originating from various Phishing-as-a-Service (PhaaS) operations. Some of these services have thrived, while the popularity of others has diminished. One PhaaS operation that has notably been present throughout the past two years is known as Strox (aka Strox.su...
login page on computer screen
Blog

Reduce Ransomware Risk And Detect Data Leaks

By Monica Delyani on Fri, 10/06/2023
Ransomware Risk Has Never Been Greater Ransomware gangs are strategically targeting enterprises, disabling critical systems, and demanding record ransom amounts. They are also stealing confidential data and threatening to leak company secrets unless victims pay up. With Fortra's Agari, enterprises can disrupt these attacks before they start and proactively monitor for ransomware data leaks. ...
Anti-Phishing Offerings
On-Demand Webinar

2023 BEC and Email Impersonation Trends

Examine campaigns, tactics, and infrastructure used in recent BEC and email impersonation attacks to better defend against BEC and domain impersonation threats.
man with glasses on laptop
Blog

Cyber Defense Magazine: New PhishLabs Research Details .ZIP Abuse

Thu, 09/21/2023
Fortra’s PhishLabs has identified two separate incidents of new Google top-level domain (TLD) .zip used in phishing attacks. The attacks, detailed in the September issue of Cyber Defense Magazine, use .zip to impersonate a social media conglomerate and global technology company. Look-alike domains using common file extensions are increasingly used to enhance the perceived legitimacy of cyber...
Blog

Attacks on Credit Unions Exceed All Other Industries in Q2

Thu, 09/14/2023
According to Forta’s Phishlabs, credit unions became the top targeted industry on the dark web in Q2, surpassing banking institutions for the first time since we began reporting on this data in 2021. Financial institutions as a whole experienced the vast majority of abuse, with compromised credit card data leading all threat types on the dark web.Every quarter, Fortra’s PhishLabs analyzes hundreds...