Search
Close this search box.

Category: Blog

Analyzing behavior to protect against BEC attacks

Understanding “normal” behaviors in email exchanges are key to combating advanced phishing and BEC attacks by John Stevenson Detecting Business Email Compromise (BEC)  In the final part of our series of blogs on Business Email Compromise (BEC), it’s time to look at how AI, ML, and NLP all have a

Using NLP techniques to protect against BEC attacks

How Natural Language Programming help combat phishing and BEC attacks by John Stevenson Business Email Compromise (BEC)  Business Email Compromise (BEC) covers a range of email attacks that typically share a common core attribute. There is no obvious executable component, such as a URL or file attachment in the message

Phishing with QR codes

Don’t Scan or be Scammed By Maharlito Aquino, Kervin Alintanahin and Dexter To In 1994, a type of the matrix barcode known as the Quick Response code, now widely known as QR code, was invented by Masahiro Hara from a Japanese company Denso Wave. The purpose of the barcode was

Abusing Remote Administration Tools

The bad, worse and the horrible  by Gunnar Guðmundsson and Axel Marinho Guðmundsson Introduction In this article, we look at a malware payload from an exploited Microsoft Word document. With a little Python scripting and deciphering we research a single sample and gather a few more versions to view a

Analyzing message metadata to protect against BEC attacks

Can analyzing message metadata help to protect organizations from becoming the victim of a successful BEC attack? Business Email Compromise (BEC) is an umbrella term spanning many forms of social engineering email attacks that typically share the common characteristic that there is no obvious “payload”, i.e., suspicious URL or malware-infected

Using AI to protect against BEC attacks

With no payload to detect, how best can organizations protect themselves from Business Email Compromise and other social engineering attacks? by John Stevenson Sometimes the simplest frauds are the most successful. Some years ago, local authorities in the UK were targeted by a series of just such frauds. The modus

What is Microsoft Office 365 Advanced Threat Protection?

Office 365 Advanced Threat Protection (also known as ATP and Defender) can provide your organization with advanced security features – keeping you protected from cybersecurity threats. With today’s cybersecurity landscape, where new threats appear daily, if not hourly, it’s critical to know what tools can help you protect your organization.

The Hidden Costs of Phishing & BEC

A couple of months ago we sat down with Damian Stalls, vCIO director at Fluid Networks to discuss how they dramatically reduced the time their security analysts spent managing the problem of phishing, BEC, and user education. Here were some of the highlights from our discussion. Recovering From Successful Attacks

3 Ways to Optimize Your Security Awareness Training Program

Despite investments of time and money in secure email gateways, phishing threats continue to be delivered to the user’s inbox. To close this gap in automated detection, many organizations roll out user security awareness programs to train their employees to spot and avoid these threats. Even that, however, hasn’t brought

Protect Office 365 Email from Ransomware

Ransomware is continually evolving. It has become the “most prominent malware threat”, with experts estimating that ransomware attacks in 2021 resulted in total damage costs of $20 billion. While there is no ransomware that specifically targets Office 365 data, it can still affect Exchange Online, Sharepoint Online, and other cloud