Products
Products
Awareness
Detection
Response
Intelligence
About Cofense
About Cofense
Leadership
FAQs for PhishMe Submerge
Registration & Event Information How do I register? Please use the…
Learn More

Cofense Blog

STAY CURRENT ON INDUSTRY TRENDS & COFENSE NEWS

How phishing will forever be a problem

October 22, 2020 by Cofense in Phishing

Two-plus decades ago Aaron Higbee, now Cofense CTO and co-founder, was hired by a company to help counter their exploding email spam problem, a role that evolved to addressing other internet-abuse issues. He took on threat tactics that evaded technical controls, and he never looked back.    Aaron shares what he learned in his article, My ‘Ah-Ha’ Moment: Phishing Will Forever Be A Problem, published by the Forbes Technology Council. In the article, he discusses what he‘s seen and uncovered about phishing attacks on organizations during his lengthy career in cybersecurity.   In particular, Aaron mentions that he has learned: “…technologies can’t predict the future and that when attackers are sufficiently frustrated by an emerging preventative control, they will innovate around it.” But that by, “Actively training users to report suspicious...

READ MORE

FISSEA Recognizes Cofense with the Best Security Blog Award

October 19, 2020 by Michael Callahan in Phishing

This week, the Cofense blog post, Invoice Themed Phishing Emails Are Spreading from Trusted Links, was named 2020 Best Security Blog by Federal Information Security Educators (FISSEA). Founded in 1987, FISSEA is an organization run by and for federal government information security professionals to assist federal agencies in strengthening employee cybersecurity awareness and training programs. Each year – with dozens of entries in varied categories – FISSEA recognizes a best entry in the FISSEA Training Exercise Contest. To meet the criteria, training exercises must have a security theme and be a part of an organization’s current security training program. Judging is based on originality, security message and graphic concept.  “We are honored to be recognized for our efforts to help companies find and remove phish in their environments,” said Michael Callahan, Cofense SVP...

READ MORE

How phishing will forever be a problem

October 22, 2020 by Cofense in Phishing

Two-plus decades ago Aaron Higbee, now Cofense CTO and co-founder, was hired by a company to help counter their exploding email spam problem, a role that evolved to addressing other internet-abuse issues. He took on threat tactics that evaded technical controls, and he never looked back.    Aaron shares what he learned in his article, My ‘Ah-Ha’ Moment: Phishing Will Forever Be A Problem, published by the Forbes Technology Council. In the article, he discusses what he‘s seen and uncovered about phishing attacks on organizations during his lengthy career in cybersecurity.   In particular, Aaron mentions that he has learned: “…technologies can’t predict the future and that when attackers are sufficiently frustrated by an emerging preventative control, they will innovate around it.” But that by, “Actively training users to report suspicious...

READ MORE

FISSEA Recognizes Cofense with the Best Security Blog Award

October 19, 2020 by Michael Callahan in Phishing

This week, the Cofense blog post, Invoice Themed Phishing Emails Are Spreading from Trusted Links, was named 2020 Best Security Blog by Federal Information Security Educators (FISSEA). Founded in 1987, FISSEA is an organization run by and for federal government information security professionals to assist federal agencies in strengthening employee cybersecurity awareness and training programs. Each year – with dozens of entries in varied categories – FISSEA recognizes a best entry in the FISSEA Training Exercise Contest. To meet the criteria, training exercises must have a security theme and be a part of an organization’s current security training program. Judging is based on originality, security message and graphic concept.  “We are honored to be recognized for our efforts to help companies find and remove phish in their environments,” said Michael Callahan, Cofense SVP...

READ MORE

Want to simulate a holiday phish? This one’s from your friends at Emotet.

December 23, 2019 by Cofense in PhishingCofense Solutions

By Tonia Dudley Tis the season when organizations are looking to send out the year’s last phishing simulation. Often the Security Awareness team lands on a holiday theme – holiday party, holiday raffle, or even the fun ugly sweater lure. In the past, when I worked with teams to advance their phishing defense programs, I would recommend staying away from holiday themed scenarios. I’ll explain why in a moment. But my opinion has changed, thanks to the threat actors behind Emotet.

READ MORE

Remote Access Trojan Uses Sendgrid to Slip through Proofpoint

August 14, 2019 by Marcel Feller in Phishing Defense CenterProofpointSEG Misses

The CofenseTM Phishing Defense CenterTM observed a malware campaign masquerading as an email complaint from the Better Business Bureau to deliver the notorious Orcus RAT, part of the free DNS domain ChickenKiller which we blogged about in 2015. Here’s how it works:

READ MORE