Cyren Security Blog

Subscribe to this Blog

You Should Enlist Your Employees in Threat Detection

by Cyren Security Blog

Your employees’ instincts are incredibly valuable and can help you crowdsource threats. With Cyren Inbox Security, they’re one click away from flagging an email as suspicious, and telling Cyren to search for lookalike emails in the system.

Covid-19 Exposes a Newly Remote Workforce to More Evasive Phishing Attacks

by Cyren Security Blog

Before Covid-19, 78% of Microsoft 365 administrators reported security breaches, citing phishing as the leading cause. Now scammers are rushing to target scattered workforces that are distracted, stressed, and accessing cloud systems from their home networks.

Covid AgentTesla

by Maharlito Aquino and Kervin Alintanahin

With the world under threat of the COVID-19 aka corona virus, many cybercriminals are taking this opportunity to blend in the chaos. Here we have an email posing to have an order of masks. An important personal protection equipment that is on a very high demand as of this moment.

VelvetSweatshop Revival with Excel4 Macro Malware Delivers Gozi/Ursnif Amidst Covid-19 Chaos

by Maharlito Aquino and Carlo Panganiban

In the past month, we have been seeing a surge in Excel malware using Excel4 Macros (XLM) in hidden worksheets. Just a few weeks ago, malicious actors started reviving an age-old technique to further hide the malicious XLM code by leveraging the VelvetSweatshop secret password in Excel workbooks.

File-less (almost) and Confused

by Maharlito Aquino and Kervin Alintanahin

Amidst the crisis the world is going through because of the Covid-19 pandemic, malicious actors continue to take advantage of the situation to lure unsuspecting online consumers into installing malware into their systems.

Protect From Evasive Phishing with Email Security Defense-in-Depth

by John Callon

Email security is broken. Companies are attempting to defend against today’s sophisticated attacks using technology developed to block spam and malware.

In the late 1990s, spam had become a serious problem and propagation of malware by email started to increase. In response, email security software was created. The popular open source spam filtering software, SpamAssassin, was first made available in 2001. It included various detection techniques, such as Bayesian filtering, IP reputation and blocklists. The Secure Email Gateway (SEG), a product category that came into being in the early 2000s, still uses these techniques today.