Resources

Video

Shining a Light on BEC Risk and Fraud: How Active Engagement Closes the BEC Intelligence Gap

By Crane Hassold

Business Email Compromise (BEC) costs organizations like yours $9 billion every year. These hard-to-detect phishing schemes drive more than 40% of all cybercrime losses. But threat intelligence and fraud prevention teams have had little visibility into the scope of their risk, the BEC attack cycle, or threat actors’ objectives and methods. That’s about to change. Agari Active Defense leverages an...

Video

Agari DMARC Protection Explainer

Mon, 07/25/2022

Transcript Email remains the most popular method for businesscommunications. It's also the number one target for cyber attacks. And one malicious email is all it takes to destroy years ofbuilding a trusted relationship with your custom versuswhich is why DMARC is an essential email securitysolution that prevents cyber attacks from hijacking yourdomains for email spoofing, executive...

Video

How and Why COVID-19 is Being Used for BEC and Phishing Attacks

Mon, 07/25/2022

Phishing and Business Email Compromise (BEC) attacks always take advantage of natural disasters and personal misfortune to target even the most vulnerable among us. This time is no different as we are all experiencing the COVID-19 outbreak, but the tactics can be spotted and defeated. In this webinar Crane Hassold, Agari's former Senior Director of Threat Research, provides an inside look into...

Video

Informatica Gains Visibility into Threats by Using Fortra

Listen to Bill Burns, Chief Trust Officer and VP of Business Transformation for Informatica, speak about his experience working with Fortra's Agari. Transcript I'm Bill Burns, Chief Trust Officer and VP of Business Transformation for Informatica. I've been working with Fortra's Agari for about six years at previous companies, introducing them to solve...

Guide

Anatomy of a Compromised Account

Credential phishing leads to compromised accounts, and compromised accounts lead to more credential phishing. In order to uncover the mechanics, the Agari Cyber Intelligence Division seeded more than 8,000 phishing sites with fake credentials and then monitored what happened next. In this report, you’ll discover more about how cybercriminals access and use compromised accounts, including How...

Guide

Getting Started with DMARC

Discover why cybercriminals target enterprise email channels for phishing schemes and how you can protect yourself from phishing by implementing DMARC.

Guide

Frost Radar: Email Security Report

Frost & Sullivan has released the Frost Radar: Email Security, providing a benchmarking system to help you protect your email from cyber attacks. Download the report for more information about: Why email is a top threat vector for cyber attacks, and how working from home has increased the risk How the email security market will continue to grow as more organizations transition to the cloud,...

Guide

Exaggerated Lion Threat Dossier: BEC Check Fraud Ring

Exaggerated Lion is a BEC cybercrime ring that operates out of Africa with members in Nigeria, Ghana, and Kenya. This is one of the most prolific BEC groups ever discovered, targeting more than 3,000 employees at nearly 2,100 companies throughout the United States. Download this report for details including: How they name, register and host domains disguised to mimic trusted infrastructure. ...

Guide

Behind the 'From' Lines: Email Fraud on a Global Scale

Organized criminals are targeting businesses with identity deception attacks that cause financial losses and broken trust, but Agari is changing the game. Using responsible active defense techniques to analyze criminal email accounts, the Agari Cyber Intelligence Division (ACID) unmasked 10 cybercriminal groups during a 10-month period. ACID has used the results of its work to: Warn financial...

Guide

Silent Starling Threat Dossier: BEC to VEC

Vendor email compromise is a new form of advanced email attack that uses compromised email accounts to target the global supply chain. With the cybercriminal group we’ve named Silent Starling, we see how devastating these attacks can be. Download the threat actor dossier to: How Silent Starling uses phishing email lures to target their victims Why compromised email accounts make email...

Guide

Scattered Canary Threat Dossier

Business email compromise (BEC) has continued to grow into a billion-dollar industry as cybercriminals turn to it as their preferred scam. But with the West African gang we’ve named Scattered Canary, we have deeper insight into how BEC is connected to the rest of cybercrime, and why it has grown in recent years. Download the threat dossier to learn: How Scattered Canary grew from a one-man...

Guide

Scarlet Widow Part 2: BEC Bitcoin Laundry—Scam, Rinse, Repeat

While many cybercriminal gangs scam medium-sized and large corporations, Agari has now uncovered and documented the practices of a Nigeria-based scammer group, dubbed Scarlet Widow, that has evolved a different strategy focused on more vulnerable sectors such as school districts, universities, and nonprofits. In this report, we uncover: How Scarlet...

Guide

Cosmic Lynx Threat Dossier: The Rise of Russian BEC

Cosmic Lynx is a Russia-based BEC cybercriminal organization that has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks. In this threat dossier, you’ll discover key details about Cosmic Lynx, including: How Cosmic targets global corporations with incredibly sophisticated BEC attacks How Cosmic Lynx exploits DMARC controls to impersonate...

Advanced Persistent Threats (APT)

Business Email Compromise

Spear Phishing

Advanced Threat Protection

Anti-Phishing

Cloud Email Security

Guide

Threat Intelligence Brief: The Geography of BEC

Business Email Compromise (BEC) is a worldwide scourge affecting more than three-fourths of the world’s economies. Around the globe, BEC cybercriminals operate with impunity to steal $26 billion each year. The Agari Cyber Intelligence Division conducted nearly 10,000 active engagements with BEC threat actors and captured the scope of BEC’s global footprint and trends. In this report, you’ll...

Guide

Download the Latest Email Fraud & Identity Deception Trends Report

In 2021 alone, the FBI's IC3 report published that over $44 million in losses were a direct result of effective phishing and advanced email scams. The Agari Cyber Intelligence Division analyzed trillions of emails and nearly 500 million Internet domains to uncover the scope and impact of this email fraud… and the trends that benchmark enterprise security teams’ ability to respond to email threats....

Guide

A Federal Agency Guide to Complying with Binding Operational Directive (BOD) 18-01

This document provides tactical guidelines to assist Federal agencies in complying with the Department of Homeland Security Binding Operational Directive (BOD) 18-01 requirements.

Guide

Domains Associated with Exaggerated Lion BEC Campaigns

Below is the list of domains associated with Exaggerated Lion BEC Campaigns. You can access the PDF version of this list by clicking the "Download PDF Version" button at the top of this page. 1secure-portal-server.online admin-office-exec-ssl-secure-server-portal-exec.management admin-office-exec-ssl-secured-server-portal-exec.management admin-server-apps.management admin-servers-apps.management...

Guide

Getting Started with DMARC: A Guide for Healthcare Organizations

Advanced email attacks against healthcare organizations can result in breached patient data, stolen funds, and brand damage. With DMARC, your organization can secure its email channel, prevent phishing, and maintain the trust you’ve earned with your patients, partners, and providers. Read this white paper to learn: What DMARC is and how it works; The benefits of DMARC for your employees,...

On-Demand Webinar

Why Agari DMARC Protection Is Essential to Your DMARC Journey

By Mike Jones

This on-demand webinar explains how to understand when your company is being targeted in an attack and how Agari DMARC Protection stops email spoofing.

Video

5 Keys to DMARC Success

By Brent Sleeper

DMARC email authentication is essential to protecting your business, customers, and partners from email attacks that spoof your domain and hijack your brand. But for large enterprises, effective DMARC deployment is a complex, high-stakes effort. Let Agari show you the way to full DMARC protection quickly and safely. In this webinar, you’ll discover 5 best practices from the pros: Key program...

Shining a Light on BEC Risk and Fraud: How Active Engagement Closes the BEC Intelligence Gap

Agari DMARC Protection Explainer

How and Why COVID-19 is Being Used for BEC and Phishing Attacks

Informatica Gains Visibility into Threats by Using Fortra

Anatomy of a Compromised Account

Getting Started with DMARC

Frost Radar: Email Security Report

Exaggerated Lion Threat Dossier: BEC Check Fraud Ring

Behind the 'From' Lines: Email Fraud on a Global Scale

Silent Starling Threat Dossier: BEC to VEC

Scattered Canary Threat Dossier

Scarlet Widow Part 2: BEC Bitcoin Laundry—Scam, Rinse, Repeat

Cosmic Lynx Threat Dossier: The Rise of Russian BEC

Threat Intelligence Brief: The Geography of BEC

Download the Latest Email Fraud & Identity Deception Trends Report

A Federal Agency Guide to Complying with Binding Operational Directive (BOD) 18-01

Domains Associated with Exaggerated Lion BEC Campaigns

Getting Started with DMARC: A Guide for Healthcare Organizations

Why Agari DMARC Protection Is Essential to Your DMARC Journey

5 Keys to DMARC Success

Contact Information

Privacy Policy

Cookie Policy

Impressum