Resources

email spoofing
Blog
Blog

How to Protect Against BEC from Inception to Inbox

By Monica Delyani on Mon, 05/06/2024
What Is Business Email Compromise (BEC)? Business email compromise (BEC) is a dangerous and pervasive type of email spoofing that targets businesses, aiming to damage them in some financial or reputation-based way. It does so via deceptive tactics, such as CEO or executive impersonation, allowing BEC attacks to evade security filters, leading to fraud, compromised accounts, and data leakage. Other...
Cloud Email Security
Live Webinar
Live Webinar
May
22

Is Microsoft Email Security Enough in 2024?

-
John Wilson |
Chris Spencer
While Microsoft offers tiers of security features, their email security capabilities may not be enough on their own. In this webinar, Fortra experts discuss possible shortcomings in Microsoft email security and how adding solutions to fill the gaps can protect better against advanced email threats.
Cloud Email Security,
Email Security for Office 365
FREE
In CDT
Cloud Email Protection
Blog
Blog

The Email Security Gaps in Your Cloud

By Ravisha Chugh on Thu, 03/28/2024
According to Gartner, Microsoft lacks the ability to detect and eradicate 20% of the advanced email threats. Email security expert, Ravisha Chugh, shares why current cloud email security solutions are insufficient against advanced email threats, and why she's excited to be a part of Fortra's Cloud Email Protection.
email security
Article
Article

BEC: Why This Basic Threat Is Difficult to Detect

Fri, 12/01/2023
Revenue lost to payment fraud saw an increase in every major global region from 2021 to 2022, and odds are your organization is still seeing email impersonation threats in inboxes. But why? This article provides insights on Business Email Compromise to help you understand just why these threats are so effective for cybercriminals.
Advanced Persistent Threats (APT)
Business Email Compromise
Cloud Email Security
AI-Email-Solutions
Blog
Blog

The Science Behind the Scenes: How Machine Learning Combats Phishing Attacks and BEC

Thu, 07/20/2023
Because email remains the most ubiquitous form of business communication, it continues to be a favorite attack vector for cybercriminals. Email has always been vulnerable because it was not originally designed with security or privacy in mind. As a result, email security vendors emerged to protect this critical communication channel. In the early days, many vendors used signature or reputation...
Advanced Persistent Threats (APT)
Business Email Compromise
Cloud Email Security
Agari Machine learning
Guide
Guide

Machine Learning Models in Cloud Email Protection

Traditional email security products struggle to detect email impersonation threats such as Business Email Compromise (BEC) and spear phishing campaigns. These threats consistently bypass defenses that rely on signatures and policies like Secure Email Gateways and native-cloud email filters. This guide breaks down how Fortra uses advanced data science, including machine learning models, to find and mitigate attacks that slip past traditional email defenses.
Advanced Persistent Threats (APT)
Business Email Compromise
Social Engineering
Advanced Threat Protection
Anti-Phishing
Cloud Email Security
Blog
Blog

99% of User-Related Threats Are Email Impersonation Attempts

Thu, 06/22/2023
Threats in corporate inboxes hit new highs with a quarter of all reported emails classified as malicious or untrustworthy. 99% of these threats were email impersonation threats, such as BEC and credential theft lures, that lack attachments or URLs delivering malware payloads. Cybercriminals continue to bypass traditional email security tools and reach end users by impersonating individuals...
Cloud Email Security
Blog
Blog

Gone Phishing: What’s the Best Way to Educate Staff on Security?

Fri, 02/03/2023
How do you work out the weakest link in your team? Who is that employee most likely to fall prey to the socially engineered scams that are making billions of pounds for cyber criminals on the black market? Pertinent questions in the aftermath of the recent Kaspersky Lab report that revealed more than 100 banks, financial institutions and e-payment systems in over 30 countries had been targeted by...
Cloud Email Security
Phishing
Blog
Blog

Phishing with Invisible Ink

Fri, 02/03/2023
You might remember as a child, there was a revelation…invisible ink. Stepping forward to today, there is now a new type of phishing which uses invisible ink, or as it’s also called, ‘zero font’, as a means to beat the spam and phishing filters. Anti-spam / phishing filters work in several different ways; they look for specific words or phrases and there is then a statistical element. If there are...
Cloud Email Security
First Line of Defense
Blog
Blog

How to Gain Stakeholder Support for Email Security Investment

Tue, 01/24/2023
Investing in email protection beyond basic anti-spam is vital to protecting an organization. Persuading leadership and stakeholders of this can be complicated. We take a look at ways to obtain comprehensive email security buy-in.
Cloud Email Security
First Line of Defense
Blog
Blog

What Is an Enterprise’s Primary Line of Defense Against Phishing Emails?

By Monica Delyani on Tue, 01/17/2023
Through a layered approach utilizing a comprehensive solution as the primary defense, Fortra fills major gaps in email platform security by protecting users from external threats and safeguarding your sensitive data from being leaked both inside and outside your organization.
Advanced Persistent Threats (APT)
Advanced Threat Protection
Cloud Email Security
World class email security experts
Blog
Blog

What Is an Enterprise’s Secondary Line of Defense Against Phishing Emails?

Tue, 01/17/2023
Following a multi-layered approach to phishing defense is a good idea, but using what you have close to home is best when it comes to a sensible security posture. In practice, a robust security awareness training program is key to instruct employees on what to look for when trying to spot phishing emails that may have landed in their inboxes.
Advanced Persistent Threats (APT)
Advanced Threat Protection
Cloud Email Security
Blog
Blog

Financials & Card Data Top Q3 Targets on the Dark Web

Mon, 12/05/2022
In Q3, credit unions nearly overtook national banks as the top targeted industry on the Dark Web, according to recent data from Fortra’s PhishLabs.
Advanced Persistent Threats (APT)
Business Email Compromise
Consumer Phishing
Blog
Blog

Emails Reported as Malicious Reach Four-Quarter High in Q3

Wed, 11/23/2022
The volume of malicious emails reported in corporate inboxes has reached a four-quarter high, according to the latest data from Fortra's PhishLabs.
Advanced Persistent Threats (APT)
Business Email Compromise
Data Breach
Ransomware
Social Engineering
Cloud Email Security
Blog
Blog

What Is Whaling Phishing & How Does It Work?

Mon, 10/03/2022
“Whaling” phishing fraud attacks target the C-suite of a company which creates high risk of extremely sensitive, mission-critical data being stolen and exposed. Fortunately, protecting the organization from these attacks is possible. Whaling phishing is a type of phishing attack targeting larger, high-value targets, which is why it's called "Whaling." Attackers themselves often pretend to be C...
Advanced Persistent Threats (APT)
Business Email Compromise
Spear Phishing
Cloud Email Security
Blog
Blog

How to Run Simulated Phishing Campaigns

Tue, 09/13/2022
Here's how to run a simulated phishing campaign to test and train your employees before they receive an actual phishing email. What is a Phishing Campaign? To be clear, when we say “phishing campaign,” we’re not referring to malicious, black-hat phishing campaigns. A simulated phishing campaign is part of an internal training program to raise employee awareness about real-world phishing attacks...
Advanced Threat Protection
Anti-Phishing
Article
Article

Hybrid Vishing. It's Such A Thing.

Mon, 09/12/2022
In this podcast, John Wilson, senior fellow for threat research at, discusses how vishing, a tactic used to gain PII information from people through phone messages is - like its success - on the rise. Gain insight into this devious scam and the best defense against it.
Advanced Persistent Threats (APT)