Resources

Agari Machine learning
Guide
Guide

Machine Learning Models in Cloud Email Protection

Traditional email security products struggle to detect email impersonation threats such as Business Email Compromise (BEC) and spear phishing campaigns. These threats consistently bypass defenses that rely on signatures and policies like Secure Email Gateways and native-cloud email filters. This guide breaks down how Fortra uses advanced data science, including machine learning models, to find and mitigate attacks that slip past traditional email defenses.
Advanced Persistent Threats (APT)
Business Email Compromise
Social Engineering
Advanced Threat Protection
Anti-Phishing
Cloud Email Security
Blog
Blog

Emails Reported as Malicious Reach Four-Quarter High in Q3

Wed, 11/23/2022
The volume of malicious emails reported in corporate inboxes has reached a four-quarter high, according to the latest data from Fortra's PhishLabs.
Advanced Persistent Threats (APT)
Business Email Compromise
Data Breach
Ransomware
Social Engineering
Cloud Email Security
Blog
Blog

DKIM vs. SPF Email Standards: Do I Need Them Both?

Thu, 10/20/2022
When it comes to email authentication standards, should you use DKIM, SPF, or both? We’re going to cover these terms, when you should use them, what they do—and how best to protect your email domains. Is it Either/Or—or Both? Should the battle really be SPF vs. DKIM? While not mandatory, it’s highly recommended to use both SPF and DKIM to protect your email domains from spoofing attacks and fraud...
Cloud Email Security
DMARC Email Authentication
SPF
DKIM
Blog
Blog

DKIM Guide: How to Set Up the Email Standard Step by Step

Tue, 10/18/2022
In this DKIM setup guide, we’ll walk you through the steps on how to set up DKIM correctly, test it, avoid common pitfalls, and fix common mistakes. In case you’re new to DKIM, or DomainKeys Identified Mail, we’ll start with a high-level overview before getting to the step-by-step instructions, but you can first look up your DKIM record here . What is DKIM? A Brief Introduction DKIM is a standard...
Cloud Email Security
DMARC Email Authentication
DKIM
Blog
Blog

The “i'’s” Have It: How BEC Scammers Validate New Targets with Blank Emails

Fri, 07/29/2022
Have you ever received a blank email from someone you don’t know? If you have, it may have been from a cybercriminal making sure your email account is legitimate prior to a Business Email Compromise (BEC) attack. Agari and PhishLabs define BEC as any response-based spear phishing attack involving the impersonation of a trusted party to trick victims into making an unauthorized financial...
ACID Research
Advanced Persistent Threats (APT)
Consumer Phishing
Spear Phishing
On-Demand Webinar
On-Demand Webinar

Simplifying DMARC Email Authentication with Agari DMARC Protection

By Brent Sleeper
In this webinar, discover how Agari DMARC Protection automates and simplifies DMARC email authentication so you can get to policy=reject faster. You will gain valuable insights, such as: The challenge and limits of DMARC. The benefits of hosted DMARC, BIMI, SPF, and DKIM records. How automated discovery helps quickly identify email senders. Ways to quickly investigate unknown senders. Tips for...
Cloud Email Security
DMARC Email Authentication
SPF
DKIM
Video
Video

What is Social Engineering?

Tue, 07/26/2022
Transcript Social engineering is the use of idiosyncrasies of the way our brains work to trick us into doing something we would otherwise not do. Let me give you an example. Suppose that you live in an apartment complex that has a secure gate and everyone at that complex has been told, "Don't let strangers in. Don't hold the door for anyone." I could use a few techniques to get in there. For...
Advanced Persistent Threats (APT)
Social Engineering
Guide
Guide

Scarlet Widow Part 1: Breaking Hearts for Profit

Table of Contents Who is Scarlet Widow? Femmes Fictionale and Counterfeit Romeos The Long Con: Making Moves for Money Starry Eyes for Starling Michael Up Close and Personal: The Case of "Robert Blackwell"
Advanced Persistent Threats (APT)
Social Engineering
Advanced Threat Protection
Anti-Phishing
Datasheet
Datasheet

Agari Automation and Hosting Features

The Email Authentication Challenge Email is the #1 way attackers target an organization’s customers and email ecosystem. DMARC authentication, specifically with an enforcement policy of Reject, is the single most effective way to close this vulnerability inherent to email. While the premise of authentication is straightforward, organizations can encounter roadblocks and challenges along the way to...
Cloud Email Security
DMARC Email Authentication
SPF
DKIM
Guide
Guide

Scarlet Widow Part 2: BEC Bitcoin Laundry—Scam, Rinse, Repeat

While many cybercriminal gangs scam medium-sized and large corporations, Agari has now uncovered and documented the practices of a Nigeria-based scammer group, dubbed Scarlet Widow, that has evolved a different strategy focused on more vulnerable sectors such as school districts, universities, and nonprofits. In this report, we uncover: How Scarlet Widow transitioned from romance scams to tax...
Advanced Persistent Threats (APT)
Business Email Compromise
Social Engineering
Blog
Blog

Top Social Media Threats Targeting the Retail Industry

Fri, 03/04/2022
Social media threats targeting enterprises more than doubled last year. Attacks on the retail industry specifically have grown, as threat actors are targeting victims with impersonation and counterfeit ad campaigns. Purchasing behavior is increasingly influenced by social media, making it an attractive vector for these kinds of campaigns. The tendency of social media users to consume information...
Advanced Persistent Threats (APT)
Social Engineering
Blog
Blog

2022 Data Privacy Week – Education and Inspiration

Mon, 01/24/2022
As the world becomes more and more dependent on online resources to complete daily tasks, such as work meetings, grocery shopping, and even exercising, the risk of cyber attacks, data breaches, and information stealing increases. If you’re not already protecting your personal information online, now is the perfect time to start, as Data Privacy Weeks kicks off today. Led by the National Cyber...
Advanced Persistent Threats (APT)
Data Breach
Social Engineering
Advanced Threat Protection
Anti-Phishing
Blog
Blog

Inside a Compromised Account: How Cybercriminals Use Credential Phishing to Further BEC Scams

Mon, 06/07/2021
Why would a cybercriminal spend time developing malware when he can simply trick unsuspecting users into handing over their passwords? Why would a threat actor spend her money and resources on ransomware, when she can get that same information through a compromised account? It’s a good question, and exactly what the Agari Cyber Intelligence Division wanted to discover. In a growing trend known as...
ACID Research
Advanced Persistent Threats (APT)
Business Email Compromise
Blog
Blog

Cyber Threat Intelligence: How to Stay Ahead of Threats

Tue, 05/18/2021
Generally defined, cyber threat intelligence is information used to better understand possible digital threats that might target your organization. This data will help identify threats in order to prevent security breaches in the future. Why Cyber Threat Intelligence is Important Having a system in place that can produce threat intelligence is critical to staying ahead of digital threats, as well...
ACID Research
Advanced Threat Protection
Anti-Phishing
Blog
Blog

Frost Radar Names Agari as a Leader in Email Security

Wed, 04/28/2021
Three months ago, when I joined Agari as the Chief Marketing Officer, I knew that I was joining a leader in email security. I knew this partially because I worked for Agari from 2016-2019 during an exciting time of change for the company. But my time away from Agari made me realize how much it has to offer its customers and partners, which is ultimately why I decided to return. And I’m thrilled to...
ACID Research
Blog
Blog

Cosmic Lynx Returns in 2021 with Updated Tricks

Thu, 02/11/2021
In July 2020, we published a report on a Russian-based BEC group we called Cosmic Lynx . In that report , we described the tactics used by the group, which included its targeting of senior executives at large companies with a global footprint and how it uses mergers and acquisitions (M&A) themes in its BEC email lures. Shortly after we published the report, we saw a significant decrease in Cosmic...
ACID Research
Advanced Persistent Threats (APT)
Business Email Compromise
Cloud Email Security
Blog
Blog

How to Make Oauth2 Play Nice with EKS Ingress

Tue, 12/22/2020
Over the course of my technical career, I’ve always thought of Oauth2 to, frankly, be a bit of a pain. Oauth2 offers a mind boggling amount of possibilities and is the basis of many authorization workflows. However, I have found the documentation and supporting examples of how to integrate Oauth2 somewhat lacking. I hope that someone out in the ether will find this blog post and save a few days of...
Advanced Persistent Threats (APT)
Social Engineering
Advanced Threat Protection
Anti-Phishing
Cloud Email Security
Blog
Blog

DKIM for Email: What It Is, How It Works, and How to Add It

Thu, 11/19/2020
We'll cover what DKIM for email is, why your company needs it, how it works, how to set DKIM up, and additional ways to prevent email spoofing attacks. What is DKIM? First, let’s clarify what DKIM is in email. DomainKeys Identified Mail is a technique that uses your domain name to sign your emails with a digital “signature” so your customers know it’s really you sending those emails and that they...
Cloud Email Security
DMARC Email Authentication
DKIM