Cyren Security Blog

Subscribe to this Blog

PEMPEMPEM - Hiding Behind Fake Certificates!

by Maharlito Aquino and Kervin Alintanahin

Over the years, enterprise security teams and threat actors have been involved in a never-ending game of cat and mouse. Organizations pour millions of dollars to stop advanced threats, but threat actors continue finding ways to evade detection by either enhancing their code or simply repackaging malware in more ways than one. This blog discusses the use of multiple components, including the use of legitimate software and encryption to deliver malware in a new manner.

Microsoft Finally Acknowledges COVID-19-Related Cybercrimes

by Cyren Security Blog

On July 7, Microsoft revealed they’ve been working since December 2019 to wrest control of key domains used in vast cyber attacks in 62 countries. 

Spear Phishing, Whaling, and Delayed Detonation, Oh My!

by Cyren Security Blog

Companies worldwide are up against sophisticated email attacks like Business Email Compromises (BEC).   These attacks are also known as spear phishing, impersonation, and whaling, with the goal of convincing an end-user to release money or provide account information. 

How Machine Learning Is Building a Better Spam Trap

by Cyren Security Blog

Bad actors are constantly raising the ante on email scams.  According to Microsoft, “phishers have been quietly retaliating, evolving their techniques to try and evade protections. In 2019, we saw phishing attacks reach new levels of creativity and sophistication.”

Microsoft 365 Is Wildly Successful and Profoundly Vulnerable - Here’s Why

by Cyren Security Blog

Microsoft 365 has been adopted and used at an enormous rate and now powers 600,000 companies in the United States alone. Also enormous? The 78% of Microsoft 365 administrators who reported successful security breaches, citing email phishing as the leading cause.

Secure Email Gateways Cost $3B Last Year - Phishing Attacks Are Still Evading Them

by Cyren Security Blog

Despite investing a record $3B in Secure Email Gateways (SEGs) in 2019, US companies still lost $1.7B to phishing

Here’s how attackers use sophisticated tactics to bypass the SEG and trick users into taking the bait.