Products
Products
Detection
Detection
Cofense PhishMe
Cofense LMS
Cofense Reporter
Managed PDR
Response
Detection
Cofense Triage
Cofense Vision
Managed PDR
Integration
Response
Cofense Intelligence
Managed PDR
Intelligence
Managed PDR
Solutions
Solutions
Solutions by Industry
Solutions By Industry
Critical Infrastucture
Financial Services
US Federal Government
Healthcare
Higher Education
Legal & Professional Services
Manufacturing
Energy/Utilities
Technology
Retail
Solutions by Topic
Solutions by Topic
Phishing Defense
Incident Response
Security Awareness
Compliance Resources
Election Security
Anti-Phishing
Phishing Training
Solutions by Role
Solutions by Role
Security Leadership
Incident Response
Threat Intelligence
Security Awareness
About Cofense
About Cofense
Our Company
Our Company
About Us
Events
Awards
Investors
Careers
News Center
Cofense Labs
Cofense Dev
Leadership
Leadership
Management Team
Board of Directors
Free Tools
Free Tools
Build Resilience
Build Resilience
Email Gateway Infocenter
Coronavirus Infocenter
Remote Work Infocenter
Cofense CBFree
Create Transparency
Create Transparency
Real Phishing Examples & Threats
CloudSeeker
Speed Response
Speed Response
Threat Alerts
Resources
Resources
Resource Library
Resource Library
All Resources
Whitepapers
Videos
Infographics
On-Demand Webinars
Podcasts
Resources by Topic
Resource by Topic
Security Awareness
Ransomware
Sextortion
Email Gateways
Community & News
Community & News
Customer Resource Center
Blog
News & Press Releases
Request a Demo

Cofense Phishing Prevention & Email Security Blog

STAY CURRENT ON INDUSTRY TRENDS & COFENSE NEWS

IRS Phishing Email – Up and Coming Phishing Campaign Is Taxing to Users

March 2, 2021 by Cofense in Phishing

READ MORE

Telegram Utilized for Harvesting Credentials

February 22, 2021 by Cofense in Phishing

READ MORE

Cofense PhishMe: Our FedRAMP Journey

February 18, 2021 by Cofense in Phishing

READ MORE

Phish Found in SEG-Protected Environments Week ending February 19, 2021

February 19, 2021 by Cofense in PhishingProofpointSEG Misses

READ MORE

Phish Found in SEG-Protected Environments Week ending February 12, 2021

February 12, 2021 by Cofense in PhishingProofpointSEG Misses

READ MORE

Phish Found in Proofpoint-Protected Environments Week ending February 5, 2021

February 5, 2021 by Cofense in PhishingProofpointSEG Misses

READ MORE

BazarBackdoor’s Stealthy Infiltration Evades Multiple SEGs

February 9, 2021 by Cofense in Phishing

READ MORE

Emotet Disrupted but Likely to Return

January 28, 2021 by Cofense in Internet Security AwarenessPhishing

By Brad Haas, Cofense Threat Intelligence  Background  Originally a banking Trojan, Emotet evolved to become more of a gateway for other malware families such as Ryuk, TrickBot, and QakBot. For the last few years, it has been among the top producers of malicious emails, using innovative and regularly updated techniques. For example, recently it harvested email reply chains from victims, and used those to create effective lures to send to the victims’ contacts. It also uses several tactics to avoid detection, such as delivery via password-protected zip file attachments and hosting itself on a large collection of legitimate but compromised websites. Emotet’s authors have shown remarkable patience and willingness to...

READ MORE

Signature Deadline: The Creation of Panic by Phish

February 3, 2021 by Cofense in Phishing

READ MORE

The Ryuk Threat: Why BazarBackdoor Matters Most

October 30, 2020 by Cofense in Malware AnalysisPhishing

READ MORE

GuLoader Rises as a Top Malware Delivery Mechanism in Phishing

July 31, 2020 by Cofense in PhishingThreat Intelligence

READ MORE

“You’re Invited!” to Phishing Links Inside .ics Calendar Attachments

June 25, 2020 by Cofense in SEG MissesMicrosoft 365PhishingPhishing Defense CenterProofpoint

READ MORE

Practice Makes Perfect

June 19, 2020 by Cofense in SEG MissesPhishingPhishing Defense CenterProofpoint

READ MORE

New Mass Logger Malware Could Be Massive

June 10, 2020 by Cofense in Threat IntelligencePhishing

READ MORE

Zoom Phish Zooming Through Inboxes Amid Pandemic

June 10, 2020 by Cofense in SEG MissesCisco IronPortInternet Security AwarenessMicrosoft 365PhishingPhishing Defense CenterProofpoint

READ MORE

Phishers Cast a Wider Net in the African Banking Sector

May 29, 2020 by Cofense in SEG MissesMicrosoft 365PhishingPhishing Defense CenterProofpoint

READ MORE

MFA Bypass Phish Caught: OAuth2 Grants Access to User Data Without a Password

May 18, 2020 by Cofense in SEG MissesMicrosoft 365 EOPPhishingPhishing Defense CenterSymantec

READ MORE

A Not So Relieving Tax Relief Email: Threat Actors Take Aim at US Stimulus Efforts

May 8, 2020 by Cofense in SEG MissesMicrosoft 365 EOPPhishingPhishing Defense CenterProofpoint

READ MORE

IRS Phishing Email – Up and Coming Phishing Campaign Is Taxing to Users

March 2, 2021 by Cofense in Phishing

READ MORE

Telegram Utilized for Harvesting Credentials

February 22, 2021 by Cofense in Phishing

READ MORE

Cofense PhishMe: Our FedRAMP Journey

February 18, 2021 by Cofense in Phishing

READ MORE

Phish Found in SEG-Protected Environments Week ending February 19, 2021

February 19, 2021 by Cofense in PhishingProofpointSEG Misses

READ MORE

Phish Found in SEG-Protected Environments Week ending February 12, 2021

February 12, 2021 by Cofense in PhishingProofpointSEG Misses

READ MORE

Phish Found in Proofpoint-Protected Environments Week ending February 5, 2021

February 5, 2021 by Cofense in PhishingProofpointSEG Misses

READ MORE

BazarBackdoor’s Stealthy Infiltration Evades Multiple SEGs

February 9, 2021 by Cofense in Phishing

READ MORE

Emotet Disrupted but Likely to Return

January 28, 2021 by Cofense in Internet Security AwarenessPhishing

By Brad Haas, Cofense Threat Intelligence  Background  Originally a banking Trojan, Emotet evolved to become more of a gateway for other malware families such as Ryuk, TrickBot, and QakBot. For the last few years, it has been among the top producers of malicious emails, using innovative and regularly updated techniques. For example, recently it harvested email reply chains from victims, and used those to create effective lures to send to the victims’ contacts. It also uses several tactics to avoid detection, such as delivery via password-protected zip file attachments and hosting itself on a large collection of legitimate but compromised websites. Emotet’s authors have shown remarkable patience and willingness to...

READ MORE

Signature Deadline: The Creation of Panic by Phish

February 3, 2021 by Cofense in Phishing

READ MORE

“You’re Invited!” to Phishing Links Inside .ics Calendar Attachments

June 25, 2020 by Cofense in SEG MissesMicrosoft 365PhishingPhishing Defense CenterProofpoint

READ MORE

Practice Makes Perfect

June 19, 2020 by Cofense in SEG MissesPhishingPhishing Defense CenterProofpoint

READ MORE

Zoom Phish Zooming Through Inboxes Amid Pandemic

June 10, 2020 by Cofense in SEG MissesCisco IronPortInternet Security AwarenessMicrosoft 365PhishingPhishing Defense CenterProofpoint

READ MORE

Phishers Cast a Wider Net in the African Banking Sector

May 29, 2020 by Cofense in SEG MissesMicrosoft 365PhishingPhishing Defense CenterProofpoint

READ MORE

MFA Bypass Phish Caught: OAuth2 Grants Access to User Data Without a Password

May 18, 2020 by Cofense in SEG MissesMicrosoft 365 EOPPhishingPhishing Defense CenterSymantec

READ MORE

A Not So Relieving Tax Relief Email: Threat Actors Take Aim at US Stimulus Efforts

May 8, 2020 by Cofense in SEG MissesMicrosoft 365 EOPPhishingPhishing Defense CenterProofpoint

READ MORE

Phishers Continue to Spoof WebEx

May 7, 2020 by Cofense in SEG MissesCisco IronPortMicrosoft 365 EOPPhishingPhishing Defense Center

READ MORE

Want to simulate a holiday phish? This one’s from your friends at Emotet.

December 23, 2019 by Cofense in PhishingCofense Solutions

By Tonia Dudley Tis the season when organizations are looking to send out the year’s last phishing simulation. Often the Security Awareness team lands on a holiday theme – holiday party, holiday raffle, or even the fun ugly sweater lure. In the past, when I worked with teams to advance their phishing defense programs, I would recommend staying away from holiday themed scenarios. I’ll explain why in a moment. But my opinion has changed, thanks to the threat actors behind Emotet.

READ MORE

Trickbot Is Using Google Docs to Trick Proofpoint’s Gateway

August 29, 2019 by Cofense in Phishing Defense CenterProofpointSEG Misses

READ MORE

Cofense Headquarters

1602 Village Market Blvd, SE #400
Leesburg, VA 20175
Tel: 1-888-304-9422

Sitemap
Copyright © 2021 Cofense. All rights reserved.

Privacy Policy | Legal

Under 500 employees?

Cofense PhishMe Free, our no-cost phishing defense solution, was created just for you!

Sign up for your free account