Resources

Video
Video

Anatomy of a Compromised Email Account

By Crane Hassold
Using active defense techniques, Agari planted credentials into more than 8,000 phishing sites impersonating enterprise applications, then monitored these accounts to see when and how each compromised account was accessed. Through our analysis, we gained unique insights into what cybercriminals do with compromised email accounts. Watch this webinar to hear answers to important questions about the...
Advanced Persistent Threats (APT)
Vendor Email Compromise
On-Demand Webinar
On-Demand Webinar

Silent Starling and the Emergence of VEC

By Crane Hassold
Silent Starling is a newly discovered cybercriminal group comprised of Nigerian cybercriminals, intent on scamming as much as they can from their victims through a new attack type named vendor email compromise (VEC). Watch this webinar to learn: What VEC is and how it differs from other major attacks Why VEC is the largest threat for your supply chain Which of your employees are most likely to be...
Advanced Persistent Threats (APT)
Vendor Email Compromise
Video
Video

Informatica Gains Visibility into Threats by Using Fortra

Listen to Bill Burns, Chief Trust Officer and VP of Business Transformation for Informatica, speak about his experience working with Fortra's Agari. Transcript I'm Bill Burns, Chief Trust Officer and VP of Business Transformation for Informatica. I've been working with Fortra's Agari for about six years at previous companies, introducing them to solve specific problems and I'm bringing Fortra's...
Advanced Persistent Threats (APT)
Account Takeover
Business Email Compromise
Guide
Guide

Anatomy of a Compromised Account

Credential phishing leads to compromised accounts, and compromised accounts lead to more credential phishing. In order to uncover the mechanics, the Agari Cyber Intelligence Division seeded more than 8,000 phishing sites with fake credentials and then monitored what happened next. In this report, you’ll discover more about how cybercriminals access and use compromised accounts, including How 50%...
Advanced Persistent Threats (APT)
Business Email Compromise
Spear Phishing
Vendor Email Compromise
Guide
Guide

Behind the 'From' Lines: Email Fraud on a Global Scale

Organized criminals are targeting businesses with identity deception attacks that cause financial losses and broken trust, but Agari is changing the game. Using responsible active defense techniques to analyze criminal email accounts, the Agari Cyber Intelligence Division (ACID) unmasked 10 cybercriminal groups during a 10-month period. ACID has used the results of its work to: Warn financial...
Advanced Persistent Threats (APT)
Account Takeover
Business Email Compromise
Spear Phishing
Silent Starling Guide
Guide
Guide

Silent Starling Threat Dossier: BEC to VEC

Vendor email compromise is a new form of advanced email attack that uses compromised email accounts to target the global supply chain. With the cybercriminal group we’ve named Silent Starling, we see how devastating these attacks can be. Download the threat actor dossier to: How Silent Starling uses phishing email lures to target their victims Why compromised email accounts make email attacks easy...
Advanced Persistent Threats (APT)
Account Takeover
Business Email Compromise
Cloud Email Security
Datasheet
Datasheet

Account Takeover Attack Prevention

Organizations are more likely to be breached today than ever before, as cybercriminals shift tactics once again, using account takeovers (ATOs) to launch targeted email attacks. In fact, a recent Osterman Research survey reported that one in five organizations fell victim to an ATO-based email attack within the past 12 months. Attackers know that trusted email is the most effective way of...
Advanced Persistent Threats (APT)
Account Takeover
Blog
Blog

How to Implement the BIMI-Selector Header for Multiple Brands

Thu, 05/20/2021
Wondering what Brand Indicators for Message Identification actually means? Here, we’ll cover the basics of BIMI, what the BIMI-selector header is, what it does, whether you need it, and how to implement it. But first, do you really need the BIMI-selector header? In most cases, you only need the BIMI-selector header if you want to support multiple logos for multiple brands or subdomains. Otherwise...
Advanced Persistent Threats (APT)
Consumer Phishing
Cloud Email Security
DMARC Email Authentication
BIMI Brand Impressions
Blog
Blog

BIMI: What It Is & Why It Matters to Email Security

Fri, 01/29/2021
Curious how BIMI can protect your email? I’ll explain what BIMI is, how it works, and how you can use it to protect your brand’s email communications. What is BIMI? Brand Indicators for Message Identification, or BIMI, provides a standardized method for businesses to showcase their brand logo next to the subject line of their authenticated emails so they stand out in crowded inboxes, with built-in...
Cloud Email Security
DMARC Email Authentication
BIMI Brand Impressions
Blog
Blog

Brand Indicators for Message Identification (BIMI) Adoption Soaring to New Heights

Wed, 09/23/2020
For a growing number of email marketers, it may be "BIMI or bust." As of June 30, nearly 5,300 companies have adopted Brand Indicators for Message Identification ( BIMI ), a new email standard for showcasing a brand's logo next to its email messages in recipient inboxes, with built-in protections against phishing-based brand spoofing. The tally reflects a 3.8X increase in the number of brands...
ACID Research
Cloud Email Security
DMARC Email Authentication
BIMI Brand Impressions
Blog
Blog

Preventing Phishing Attacks:  The Dangers of Two-Factor Authentication

Mon, 06/08/2020
Are you protecting your remote workers against an endless barrage of COVID-19 related phishing attacks by requiring 2-factor authentication (2FA) to log into employee email accounts? Smart move—just don't let it give you a false sense of security.
Advanced Persistent Threats (APT)
Account Takeover
Consumer Phishing
Spear Phishing