Phish Fryday – Office Macros in Phishing Attacks

Automation with macros in Microsoft Office documents has been with us for decades. The abuse of these macros has been with us for almost as long, as attackers leverage the functionality  – and the common permissions needed to run them – to cause considerable harm to organizations. In this episode, we speak with Cofense Cyber Threat Intelligence Analyst Max Gannon to discuss the latest phishing threats and how they leverage macros to compromise organizations.

For more information on topics mentioned in this episode, please visit:

Complimentary Threat Alerts

PowerShell Scripts Delivered by Office Macros

Geodo Malware Campaigns

Questions or comments? Reach us at

Phish Fryday – Cloud Services in Phishing Attacks

Cloud platforms, such as Google Docs, Microsoft OneDrive, and Dropbox provide tremendous value to organizations looking to collaborate. Unfortunately, there are plenty of attackers willing to leverage our trust in these platforms for their own gain. On this week’s episode, we speak with Cofense Senior Intelligence Specialist Alan Rainer about the various ways attackers are using these technologies to bypass defenses and distribute malware and execute phishing campaigns.

For more information on topics mentioned in the discussion, please check out the following articles:

Raccoon Stealer

The UK Ministry of Justice Campaign

Agent Tesla

Phish Fryday – Tension between Iran and the US Increases Cyber Threat

As the situation between Iran and the United States escalates, there has been considerable speculation as to how Iran might respond to the recent actions of the US. In this episode, we speak with Mollie MacDougall, an expert on cyber and international security and the Product Manager for Cofense Threat Intelligence, to learn more about Iran’s cyber capabilities and their history in the use of cyberattacks.

Phish Fryday – The Latest on Emotet

The Emotet botnet has undergone quite a few changes in 2019 and Cofense Senior Research Engineer Jason Meurer joins us to discuss the latest variations. What has changed and how can organizations continue to detect and protect themselves from Emotet? Tune in to find out.

For more background on Emotet and the latest Cofense Research, help yourself to our blog posts:

Want to simulate a holiday phish? This one’s from your friends at Emotet.

Emotet Modifies Command & Control URI Structure

Emotet Malicious Phishing Campaigns Return in Force

Coming Soon: Phish Fryday

Phishing threats are constantly changing, as attackers try to bypass security controls and reach your users’ inboxes. SOC teams have to analyze and respond to a flood of suspicious email reports and keeping up with the latest threats is a challenge – there just isn’t enough time in the day! But Phish Fryday is here to help.

Each week, Phish Fryday, hosted by Steven Cardinal, will bring you expert interviews covering the latest phishing threats – how they work and how to defend against them. We’ll also give you a glimpse into our threat analysis techniques so that you can better analyze the threats you see and defend your organization.

Intelligent Phishing Defense isn’t just one person’s job. It takes all of us, which is why Cofense is Uniting Humanity Against Phishing.

We love feedback, questions, or comments, so send us an email at