Cyren Security Blog

Subscribe to this Blog

Why Choose Integrated Email Security and Archiving?

by Duncan Mills

Email Security Industry Insights

Email archiving has grown in popularity in the last fifteen years and is now a multi-billion dollar market. It has evolved from an essential on-premises product for highly regulated industries to mainstream adoption in the cloud. 

Exposure of car manufacturers’ data underscores risks posed by suppliers

by Duncan Mills

Email Security Industry Insights Security Research & Analysis Web Security

A single vendor can cause significant damage to multiple businesses in the wider supply chain, with breaches affecting customers, partners, and suppliers.

Cryptocurrency Exchange Targeted by Fake Phishing Site

by Maharlito Aquino and Kervin Alintanahin

Email Security Phishing Security Research & Analysis Web Security

Criminals gain access to cryptocurrency wallets and exchanges using phishing, ransomware, the creation of imitation wallets, and bitcoin-stealing malware.

Data Breach Report Underscores Phishing Risk for Manufacturers

by John Callon

Email Security Industry Insights Phishing Security Research & Analysis

The business impact of phishing is becoming increasingly more pronounced. According to the recently released 2018 Verizon Data Breach Investigations Report, 93% of all reported IT security breaches are the direct result of some form of phishing. The manufacturing industry is likely feeling this impact more than most, with targeted attacks on the rise. 

Why is the security industry telling you that your users should protect themselves?

by Duncan Mills

Email Security Industry Insights Web Security

I’m a technology marketer, and the annual RSA security event is an opportunity for me to understand what my peers and competitors are saying to customers and potential customers. My takeaway this year is that many in the industry appear to be telling customers to shift the burden of protection to the end-user. 

Double Deceit: Bad Things Come in Pairs

by Maharlito Aquino and Kervin Alintanahin

Email Security Security Research & Analysis Threat Analysis Web Security

The chinese proverb may say that good things come in pairs, but in what appears to be a clever bit of social and technical engineering, we’ve discovered a new email threat carrying not one, but two different malicious attachments as bait, specifically a PDF file and a Microsoft Template file (OpenXML/DOTX), targeting a previously reported Microsoft Office vulnerability in order to deliver the remote access trojan (RAT) known as NetWiredRC. We believe the use of two attachments is intended to make the email seem more legitimate to recipients. Typically hackers only send one malicious attachment—by sending two, the hackers increase the chances that the target will open at least one of them. In addition, the techniques applied within the attachments add a few layers of complexity in both the delivery of the exploit and the final payload, and are intended to help evade detection.