Resources
On-Demand Webinar

Leveraging AI to Combat Email Attacks

By Ravisha Chugh
In today's digital landscape, email remains a cornerstone of business communication, yet its ubiquity makes it a prime target for sophisticated attacks like BEC and brand impersonation. These attacks have a significant impact on financial organizations as they can lead to direct financial and reputational loss. While traditional email security measures help, many fall short. To combat this,...
Advanced Email Threats
Account Takeover
Business Email Compromise
Domain Impersonation
Email Spoofing
Social Engineering
Spear Phishing
Vendor Email Compromise
Anti-Phishing Offerings
Cloud Email Security
DMARC Email Authentication
Email Data Loss Prevention
Phishing Simulation & Training
Triage and Response
Email Security
hand-holding-cloud
Blog

Top Threats to Cloud Email Security and How to Mitigate Them

By Ravisha Chugh on Wed, 10/30/2024
A summary of common threats faced by cloud email systems beyond malware and data breaches, this blog provides actionable tips and best practices for businesses to protect their email systems.
Advanced Email Threats
Account Takeover
Business Email Compromise
Email Spoofing
Social Engineering
Spear Phishing
Vendor Email Compromise
Anti-Phishing Offerings
Anti-Phishing
Cloud Email Security
Email Security
Microsoft Office 365
adv-email-protect-b&w
Blog

Email Protection Strategies for Modern Enterprises

By Monica Delyani on Wed, 10/30/2024
Modern enterprises need to be able to identify the tactics being used by cybercriminals in email attacks, especially those leveraging advanced technologies like AI. Find out what's at stake and how today's email security solutions can help mitigate these evolving attacks.
Advanced Email Threats
Account Takeover
Business Email Compromise
Email Spoofing
Social Engineering
Spear Phishing
Vendor Email Compromise
Anti-Phishing Offerings
Anti-Phishing
Cloud Email Security
Email Security
Microsoft Office 365
Blog

Active Phishing Campaign: Meta Business Support Chat

By Monica Delyani on Tue, 05/07/2024
Active Phishing Campaigns are concerted, coordinated attacks that Fortra has observed bypassing email security gateways, like SEGs, and filtering tools. The following analysis includes examples, high-level details, and associated threat indicators. As of this posting, Fortra has automatically detected and removed 53 instances of this threat across multiple customer email environments. Sample...
Anti-Phishing Offerings
Anti-Phishing
Phishing Simulation & Training
Triage and Response
Blog

Financials & Card Data Top Q3 Targets on the Dark Web

Mon, 12/05/2022
In Q3, credit unions nearly overtook national banks as the top targeted industry on the Dark Web, according to recent data from Fortra’s PhishLabs.
Advanced Email Threats
Business Email Compromise
Email Spoofing
Article

How to Mitigate Online Counterfeit Threats

Tue, 09/27/2022
The broad scope of counterfeit campaigns and unclear boundaries of abuse make it challenging to successfully mitigate online threats targeting retail brands. There is a fine line between infringement and fair use of publicly made materials, as well as immeasurable online environments where counterfeit campaigns may live and grow.
Advanced Email Threats
Email Spoofing
Data Breach
Blog

The “i'’s” Have It: How BEC Scammers Validate New Targets with Blank Emails

Fri, 07/29/2022
Have you ever received a blank email from someone you don’t know? If you have, it may have been from a cybercriminal making sure your email account is legitimate prior to a Business Email Compromise (BEC) attack. Agari and PhishLabs define BEC as any response-based spear phishing attack involving the impersonation of a trusted party to trick victims into making an unauthorized financial...
ACID Research
Advanced Email Threats
Email Spoofing
Spear Phishing
Datasheet

Stop Identity-Based Email Attacks

Understanding The Threats Today’s modern identity-based email attacks exploit the identity of trusted colleagues and brands. However, each varies in the tactics and techniques used. Understanding the differences will be critical in being able to effectively and accurately stop these attacks. Customer Phishing: Cybercriminals use brand impersonation techniques such as domain spoofing and...
Advanced Email Threats
Email Spoofing
Datasheet

Fortra Email Security Bundles Datasheet

Complete protection with maximum valueAdvanced email threats demand complete protection. This is because inefficiencies in combating phishing result in lost time and productivity for employees and internal SOC teams. Fortra Email Security makes it easy to deploy interoperable layers of defense that span the entire threat lifecycle from pre-delivery staging to post-delivery via an integrated...
Advanced Email Threats
Business Email Compromise
Data Breach
Domain Impersonation
Ransomware
Anti-Phishing Offerings
Anti-Phishing
DMARC Email Authentication
Email Data Loss Prevention
Phishing Simulation & Training
Triage and Response
Email Security
Case Study

Los Angeles-Based Large Credit Union Eradicates Phishing Attacks

Executive Summary Los Angeles Federal Credit Union (LAFCU) was in the crosshairs of email scammers. Its brand was constantly being spoofed, putting its members at risk of being defrauded. The CTO prioritized email security as part of his broader risk management strategy, and selected Agari as his partner. That was more than a decade ago. Today, domain spoofing is at near-zero. "Our initial goal...
Advanced Email Threats
Email Spoofing
Anti-Phishing Offerings
Anti-Phishing
Blog

Inside a Compromised Account: How Cybercriminals Use Credential Phishing to Further BEC Scams

Mon, 06/07/2021
Why would a cybercriminal spend time developing malware when he can simply trick unsuspecting users into handing over their passwords? Why would a threat actor spend her money and resources on ransomware, when she can get that same information through a compromised account? It’s a good question, and exactly what the Fortra Cyber Intelligence Team, Fortra's group of threat hunters, wanted to...
ACID Research
Advanced Email Threats
Business Email Compromise
Blog

How to Implement the BIMI-Selector Header for Multiple Brands

Thu, 05/20/2021
Wondering what Brand Indicators for Message Identification actually means? Here, we’ll cover the basics of BIMI, what the BIMI-selector header is, what it does, whether you need it, and how to implement it. But first, do you really need the BIMI-selector header? In most cases, you only need the BIMI-selector header if you want to support multiple logos for multiple brands or subdomains. Otherwise,...
Advanced Email Threats
Email Spoofing
DMARC Email Authentication
BIMI Brand Impressions
Blog

Cyber Threat Intelligence: How to Stay Ahead of Threats

Tue, 05/18/2021
Generally defined, cyber threat intelligence is information used to better understand possible digital threats that might target your organization. This data will help identify threats in order to prevent security breaches in the future.Why Cyber Threat Intelligence is ImportantHaving a system in place that can produce threat intelligence is critical to staying ahead of digital threats, as well as...
ACID Research
Anti-Phishing Offerings
Anti-Phishing
Blog

What is Email Spoofing & How to Stop Attackers from Spoofing Your Email Address

Tue, 12/15/2020
What is email spoofing, how does it work, and why is it so dangerous to your company? We’ll explain everything you need to proactively stop attackers from spoofing your email address.Email Spoofing: What Is It?Email spoofing is when a fraudster forges an email header’s ‘From’ address to make it appear as if it was sent by someone else, usually a known contact like a high-level executive or trusted...
Advanced Email Threats
Email Spoofing
Spear Phishing
Anti-Phishing Offerings
Anti-Phishing
Blog

The Global Reach of Business Email Compromise (BEC)

Mon, 10/12/2020
Over the last five years, Business Email Compromise (BEC) has evolved into the predominant cyber threat businesses face today. Since 2016, businesses have lost at least $26 billion as a result of BEC scams and, based on the most recent FBI IC3 report, losses from BEC attacks grew another 37 percent in 2019—accounting for 40 percent of all cybercrime losses over the course of the year. The...
ACID Research
Advanced Email Threats
Business Email Compromise
Blog

Brand Indicators for Message Identification (BIMI) Adoption Soaring to New Heights

Wed, 09/23/2020
For a growing number of email marketers, it may be "BIMI or bust." As of June 30, nearly 5,300 companies have adopted Brand Indicators for Message Identification (BIMI), a new email standard for showcasing a brand's logo next to its email messages in recipient inboxes, with built-in protections against phishing-based brand spoofing.The tally reflects a 3.8X increase in the number of brands...
ACID Research
DMARC Email Authentication
BIMI Brand Impressions
Blog

Why Full DMARC Protection is a Pressing Business Imperative in 2020 and Beyond

Tue, 09/15/2020
If you haven't deployed Domain-based Messaging Authentication, Reporting, and Conformance (DMARC) to protect your brand from being impersonated in phishing scams, there are pressing reasons to jump on it now. Without a doubt, these are extraordinary times for individuals and organizations alike as we've been forced to change the way we work, shop, play, and live seemingly overnight, and for far...
ACID Research
Advanced Email Threats
Business Email Compromise
DMARC Email Authentication