Ever since the first spam email message, we have been at war with cyber criminals, who seek to subvert our email communications. We are experiencing an online arms race: As anti-spam solutions improve, criminals find ways around these defenses. Business Email Compromise (BEC) is an area where the criminals have the upper hand against traditional Secure Email Gateways (SEGs).
According to Agari’s...
Using active defense techniques, Agari planted credentials into more than 8,000 phishing sites impersonating enterprise applications, then monitored these accounts to see when and how each compromised account was accessed. Through our analysis, we gained unique insights into what cybercriminals do with compromised email accounts.
Watch this webinar to hear answers to important questions about the...
Silent Starling is a newly discovered cybercriminal group comprised of Nigerian cybercriminals, intent on scamming as much as they can from their victims through a new attack type named vendor email compromise (VEC).
Watch this webinar to learn:
What VEC is and how it differs from other major attacks
Why VEC is the largest threat for your supply chain
Which of your employees are most likely to...
In this presentation, we’ll reveal the latest from our 2022 Email Fraud and Identity Trends report, focusing on Customer Phishing and DMARC Enforcement.
In this webinar, Agari Sr. Director of Threat Research, Crane Hassold discusses Cosmic Lynx, the first-ever reported Russian BEC criminal organization, and how the group has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks.
Transcript
Email remains the most popular method for businesscommunications.
It's also the number one target for cyber attacks.
And one malicious email is all it takes to destroy years ofbuilding a trusted relationship with your custom versuswhich is why DMARC is an essential email securitysolution that prevents cyber attacks from hijacking yourdomains for email spoofing, executive...
Phishing and Business Email Compromise (BEC) attacks always take advantage of natural disasters and personal misfortune to target even the most vulnerable among us.
This time is no different as we are all experiencing the COVID-19 outbreak, but the tactics can be spotted and defeated.
In this webinar Crane Hassold, Agari's former Senior Director of Threat Research, provides an inside look into...
Table of Contents
Who is Scarlet Widow?
Femmes Fictionale and Counterfeit Romeos
The Long Con: Making Moves for Money
Starry Eyes for Starling Michael
Up Close and Personal: The Case of "Robert Blackwell"
...
Prevent, Detect & Disrupt Phishing with an Integrated Solution from Agari & PhishLabs
Threat actors impersonate legitimate brands to steal account holder credentials, leading to increased fraud and loss of customer trust. As phishing continues to rise, many organizations find themselves in need of more proactive protection that can deliver the email authentication, threat intelligence, and...
Threats will persist if SOC teams are overloaded and unprepared to review reported emails and provide feedback, especially if they’re understaffed. Fortra’s Training and Response Bundle stops email threats by delivering world-class Security Awareness Training and Integrated Response, a managed service that ensures advanced email threats are identified, easily reported, and quickly mitigated.
Business Challenge
Agari’s cloud-based security solutions allow you to stop and respond to BEC and phishing attacks on your employees and protect your customers from phishing attacks. Agari’s Customer Enablement and Support organization is committed to the success of our customers and works to ensure Agari customers achieve value through the deployment...
The Email Authentication Challenge
Email is the #1 way attackers target an organization’s customers and email ecosystem. DMARC authentication, specifically with an enforcement policy of Reject, is the single most effective way to close this vulnerability inherent to email. While the premise of authentication is straightforward, organizations can encounter roadblocks and challenges along the way...
Executive Summary
Los Angeles Federal Credit Union (LAFCU) was in the crosshairs of email scammers. Its brand was constantly being spoofed, putting its members at risk of being defrauded. The CTO prioritized email security as part of his broader risk management strategy, and selected Agari as his partner. That was more than a decade ago. Today, domain spoofing is at near-zero.
"Our initial goal...
Listen to Francisco Miranda, Information Security Officer & IT Manager of the American College of Radiology, on his experience working with Fortra's Agari.
Credential phishing leads to compromised accounts, and compromised accounts lead to more credential phishing.
In order to uncover the mechanics, the Agari Cyber Intelligence Division seeded more than 8,000 phishing sites with fake credentials and then monitored what happened next. In this report, you’ll discover more about how cybercriminals access and use compromised accounts, including
How...