Coronavirus-Themed Phish Continue to Surge
April 8, 2020 by Cofense in PhishingThreat IntelligenceCoronavirus Redefines the Phishing Threat Landscape
April 6, 2020 by Cofense in COVID-19PhishingThreat IntelligenceEmotet Gears Up to File (Your) Taxes
February 4, 2020 by Cofense in PhishingThreat IntelligenceHot Off the Press: Cofense Q4 2019 Malware Trends Report
January 23, 2020 by Cofense in Threat Intelligence5 Cybersecurity Trends that Will Dominate 2020
December 20, 2019 by Aaron Higbee in PhishingThreat IntelligenceBy Aaron Higbee, CTO, Cofense The threat landscape continues to evolve at a rapid pace, with new threat vectors emerging and increasing in sophistication. Which ones should you watch most closely as 2020 unfolds? Based on insights collected from our Cofense research teams, here are five trends we see dominating next year. Ransomware will continue becoming more targeted to reap more sizeable payouts. Many people are under the impression that ransomware is slowing down, but in reality it’s simply being used in a more targeted fashion. So many private and public organizations, as well as government entities, have been infiltrated...
This Advanced Keylogger Delivers a Cryptocurrency Miner
December 10, 2019 by Cofense in PhishingThreat IntelligencePractitioners Report the Need for Layered Email Security
July 14, 2020 by Cofense in Internet Security AwarenessPhishingSEG MissesPhish Found in Proofpoint-Protected Environments – Week Ending July 5, 2020
July 8, 2020 by Cofense in PhishingProofpointSEG MissesPhish Found in Proofpoint-Protected Environments – Week Ending June 28, 2020
June 30, 2020 by Cofense in PhishingProofpointSEG MissesPhish Found in Proofpoint-Protected Environments – Week Ending June 21, 2020
June 23, 2020 by Cofense in PhishingProofpointSEG MissesPractice Makes Perfect
June 19, 2020 by Cofense in PhishingPhishing Defense CenterProofpointSEG MissesPhish Found in Proofpoint-Protected Environments – Week Ending June 14, 2020
June 17, 2020 by Cofense in PhishingProofpointSEG MissesNew Mass Logger Malware Could Be Massive
June 10, 2020 by Cofense in PhishingThreat IntelligenceThis Phishing Attacker Takes American Express—and Victims’ Credentials
July 16, 2019 by Milo Salvia in Internet Security AwarenessMicrosoft 365 ATPPhishing Defense CenterRecently, the CofenseTM Phishing Defense CenterTM observed a phishing attack against American Express customers, both merchant and corporate card holders. Seeking to harvest account credentials, the phishing emails use a relatively new exploit to bypass conventional email gateway URL filtering services.
UK Banking Phish Targets 2-Factor Information
July 10, 2019 by Milo Salvia in Microsoft 365 EOPPhishing Defense CenterSEG MissesUnder the Radar – Phishing Using QR Codes to Evade URL Analysis
June 28, 2019 by Nick Guarino in PhishingPhishing Defense CenterSEG MissesSymantecPhishing Attacks on High Street Target Major Retailer
June 21, 2019 by Cofense in PhishingPhishing Defense CenterSEG MissesSymantecHoudini Worm Transformed in New Phishing Attack
June 14, 2019 by Cofense in Phishing Defense CenterSEG MissesSymantecThreat IntelligenceBy Nick Guarino and Aaron Riley The Cofense Phishing Defense Center™ (PDC) and Cofense Intelligence™ have identified a new variant of Houdini Worm targeting commercial banking customers with campaigns containing either URLs, .zip, or .mht files. This new variant is named WSH Remote Access Tool (RAT) by the malware’s author and was released on June 2, 2019. Within five days, WSH RAT was observed being actively distributed via phishing. Figure 1 shows an example message from this campaign.
This ‘Voice Mail’ Is a Phish—and an Email Gateway Fail
June 11, 2019 by Cofense in Phishing Defense CenterProofpointSEG MissesThe Zombie Phish Is Back with a Vengeance
June 4, 2019 by Milo Salvia in Phishing Defense CenterSEG MissesSymantecKeep a close on your inboxes—the Zombie Phish is back and it’s hitting hard. Last October, on the eve of Halloween, the CofenseTM Phishing Defense CenterTM reported on a new phishing threat dubbed the Zombie Phish. This phish spreads much like a traditional worm. Once a mailbox’s credentials have been compromised, the bot will reply to long-dead emails (hence, Zombie) in the inbox of the infected account, sending a generic phishing email intended to harvest more victims for the Zombie hoard.
Jigsaw Ransomware Returns With Extortion Scam Ploys
January 23, 2019 by Cofense in Phishing Defense CenterBy Lucas Ashbaugh Want to play a game? Jigsaw ransomware does, and it’s going to run you $400… or you could just download the free decrypter online. Jigsaw, featuring Billy The Puppet from Saw, was first released in 2016. It not only encrypts the victim’s files but deletes them at a continuously increasing rate until a payment in bitcoin can be confirmed against the bitcoin blockchain. Now, Jigsaw has been observed again, this time delivered through scam tactics. The Delivery Each email starts off with a ploy about how the threat actor somehow compromised the victim’s financial accounts. After shocking and...
