Resources

Press Release

Crucial Tech Podcast with John Wilson: Hybridized Vishing Attacks

In Cyber Protection Magazine’s Crucial Tech podcast, John Wilson, Senior Fellow, Threat Research, delves into the latest research from Agari and PhishLabs by Fortra.

Press Release

The Last Watchdog: The Drivers Behind Persistent Ransomware and Defensive Tactics to Deploy

In his guest essay for The Last Watchdog, Eric George, Director of Solutions Engineering at PhishLabs by, explains what ransomware is, who the high-stake threat actors are, and how organizations can defend themselves against ransomware attacks. Originally published in The Last Watchdog “Ransomware usually starts with a phishing email. An unsuspecting employee will open a legitimate-looking...

Blog

The “i'’s” Have It: How BEC Scammers Validate New Targets with Blank Emails

Fri, 07/29/2022

Have you ever received a blank email from someone you don’t know? If you have, it may have been from a cybercriminal making sure your email account is legitimate prior to a Business Email Compromise (BEC) attack. Agari and PhishLabs define BEC as any response-based spear phishing attack involving the impersonation of a trusted party to trick victims into making an unauthorized financial...

On-Demand Webinar

Securing Office 365: How to Protect Against Targeted Email Attacks

Thu, 07/28/2022

This webinar from Agari and Osterman Research explains why organizations with Office 365 need robust email security and how to implement it cost-effectively.

On-Demand Webinar

Silent Starling and the Emergence of VEC

By Crane Hassold

Silent Starling is a newly discovered cybercriminal group comprised of Nigerian cybercriminals, intent on scamming as much as they can from their victims through a new attack type named vendor email compromise (VEC). Watch this webinar to learn: What VEC is and how it differs from other major attacks Why VEC is the largest threat for your supply chain Which of your employees are most likely to...

On-Demand Webinar

PANEL: It's the (Decision) Economy, Stupid: Big Data Science and Security

Tue, 07/26/2022

Hear panel participants discuss how leading organizations are using data science to stay one step ahead of the bad guys.

On-Demand Webinar

Key Insights from the Email Fraud and Identity Deception Trends Report

By Mike Paiko

Discover the latest data about Business Email Compromise (BEC) and email fraud revealed in the benchmark Email Fraud and Identity Trends Report.

On-Demand Webinar

Cosmic Lynx Threat Disorder: The Rise of Russian BEC

By Crane Hassold

In this webinar, Agari Sr. Director of Threat Research, Crane Hassold discusses Cosmic Lynx, the first-ever reported Russian BEC criminal organization, and how the group has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks.

Press Release

How Enterprises Can Defend Against Rapidly Evolving Ransomware

Ransomware threats can change daily, making consumers and businesses more vulnerable than ever. Names like Angler malvertising, Locky ransomware and Angler Exploit Kit frequently crop up in the news, despite law enforcement’s best efforts to contain them. Simply put, malware is popular because it’s successful. Cyber criminals make an estimated 1,425% ROI for exploit kit and ransomware schemes,...

Guide

Scarlet Widow Part 1: Breaking Hearts for Profit

Table of Contents Who is Scarlet Widow? Femmes Fictionale and Counterfeit Romeos The Long Con: Making Moves for Money Starry Eyes for Starling Michael Up Close and Personal: The Case of "Robert Blackwell" ...

Datasheet

Stop Identity-Based Email Attacks

Understanding The Threats Today’s modern identity-based email attacks exploit the identity of trusted colleagues and brands. However, each varies in the tactics and techniques used. Understanding the differences will be critical in being able to effectively and accurately stop these attacks. Customer Phishing: Cybercriminals use brand impersonation techniques such as domain spoofing and...

Datasheet

Email Security Enterprise Services

Business Challenge Agari’s cloud-based security solutions allow you to stop and respond to BEC and phishing attacks on your employees and protect your customers from phishing attacks. Agari’s Customer Enablement and Support organization is committed to the success of our customers and works to ensure Agari customers achieve value through the deployment...

Guide

Anatomy of a Compromised Account

Credential phishing leads to compromised accounts, and compromised accounts lead to more credential phishing. In order to uncover the mechanics, the Agari Cyber Intelligence Division seeded more than 8,000 phishing sites with fake credentials and then monitored what happened next. In this report, you’ll discover more about how cybercriminals access and use compromised accounts, including How...

Guide

Exaggerated Lion Threat Dossier: BEC Check Fraud Ring

Exaggerated Lion is a BEC cybercrime ring that operates out of Africa with members in Nigeria, Ghana, and Kenya. This is one of the most prolific BEC groups ever discovered, targeting more than 3,000 employees at nearly 2,100 companies throughout the United States. Download this report for details including: How they name, register and host domains disguised to mimic trusted infrastructure. ...

Guide

Behind the 'From' Lines: Email Fraud on a Global Scale

Organized criminals are targeting businesses with identity deception attacks that cause financial losses and broken trust, but Agari is changing the game. Using responsible active defense techniques to analyze criminal email accounts, the Agari Cyber Intelligence Division (ACID) unmasked 10 cybercriminal groups during a 10-month period. ACID has used the results of its work to: Warn financial...

Guide

The Total Economic Impact™ of Agari Phishing Defense

Agari commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study and examine the potential return on investment (ROI) enterprises may realize by deploying Agari Phishing Defense. Quantified benefits expressed in risk-adjusted present value generated return on investment of 97% over three years, including: $270k value from improved IT security and reduced level of effort...

Guide

Silent Starling Threat Dossier: BEC to VEC

Vendor email compromise is a new form of advanced email attack that uses compromised email accounts to target the global supply chain. With the cybercriminal group we’ve named Silent Starling, we see how devastating these attacks can be. Download the threat actor dossier to: How Silent Starling uses phishing email lures to target their victims Why compromised email accounts make email...

Guide

Scattered Canary Threat Dossier

Business email compromise (BEC) has continued to grow into a billion-dollar industry as cybercriminals turn to it as their preferred scam. But with the West African gang we’ve named Scattered Canary, we have deeper insight into how BEC is connected to the rest of cybercrime, and why it has grown in recent years. Download the threat dossier to learn: How Scattered Canary grew from a one-man...

Guide

Scarlet Widow Part 2: BEC Bitcoin Laundry—Scam, Rinse, Repeat

While many cybercriminal gangs scam medium-sized and large corporations, Agari has now uncovered and documented the practices of a Nigeria-based scammer group, dubbed Scarlet Widow, that has evolved a different strategy focused on more vulnerable sectors such as school districts, universities, and nonprofits. In this report, we uncover: How Scarlet...

Guide

Cosmic Lynx Threat Dossier: The Rise of Russian BEC

Cosmic Lynx is a Russia-based BEC cybercriminal organization that has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks. In this threat dossier, you’ll discover key details about Cosmic Lynx, including: How Cosmic targets global corporations with incredibly sophisticated BEC attacks How Cosmic Lynx exploits DMARC controls to impersonate...

Advanced Persistent Threats (APT)

Business Email Compromise

Spear Phishing

Advanced Threat Protection

Anti-Phishing

Cloud Email Security

Crucial Tech Podcast with John Wilson: Hybridized Vishing Attacks

The Last Watchdog: The Drivers Behind Persistent Ransomware and Defensive Tactics to Deploy

The “i'’s” Have It: How BEC Scammers Validate New Targets with Blank Emails

Securing Office 365: How to Protect Against Targeted Email Attacks

Silent Starling and the Emergence of VEC

PANEL: It's the (Decision) Economy, Stupid: Big Data Science and Security

Key Insights from the Email Fraud and Identity Deception Trends Report

Cosmic Lynx Threat Disorder: The Rise of Russian BEC

How Enterprises Can Defend Against Rapidly Evolving Ransomware

Scarlet Widow Part 1: Breaking Hearts for Profit

Stop Identity-Based Email Attacks

Email Security Enterprise Services

Anatomy of a Compromised Account

Exaggerated Lion Threat Dossier: BEC Check Fraud Ring

Behind the 'From' Lines: Email Fraud on a Global Scale

The Total Economic Impact™ of Agari Phishing Defense

Silent Starling Threat Dossier: BEC to VEC

Scattered Canary Threat Dossier

Scarlet Widow Part 2: BEC Bitcoin Laundry—Scam, Rinse, Repeat

Cosmic Lynx Threat Dossier: The Rise of Russian BEC

Contact Information

Privacy Policy

Cookie Policy

Impressum