Cyren Security Blog

Subscribe to this Blog

New Cyberthreat Report: A Deep Dive on Phishing

by Lior Kohavi

Phishing Security Research & Analysis

A recent Osterman Research survey conducted on behalf of Cyren found phishing to be the top threat category for small- to medium-sized businesses (up to 3,000 employees), with 43% suffering a phishing breach in the last 12 months. ...

Ransomware — Protect Yourself or Pay

by Dan Maier

Email Security Phishing Ransomware Web Security

Ransomware has surged dramatically this year with the launch of a new variant called “Locky.” Delivered via massive malicious spam blasts (malspam), Locky represented 40% of all malware distributed worldwide during the first quarter of 2016.

And as these attacks have become more sophisticated, attackers are increasingly targeting businesses and organizations that have deeper pockets. So far, law enforcement has been helpless to stop these threats, IT teams are struggling and failing to protect their organizations, and attackers are raking in the money.

CYREN's 2016 Cyberthreat Report: Malware Increases - But Phishing Explodes

Email Security Phishing Security Research & Analysis Spam Threat Analysis

The statistics about Android phishing, malware and spam, published in CYREN's 2016 Cyberthreat Report, show a 55% annual increase in phishing and a steady upswing for malware in 2015. CYREN tracked 3.96 million active phishing URLs in 2015.

Phishing Emails Targeting Chinese Users

by Sylvain Lejeune

Phishing Security Research & Analysis Threat Analysis

Chinese people are increasingly getting online and adopting mobile services. 2014 was a pivotal year, with the massive adoption of mobile services by over 560 million users.  It is anticipated that more than half of the entire population of China will have a smartphone by 2018 as the number edges past 700 million.

Q3 Cyber Threat Report: Cyber Security Awareness

by Lior Kohavi

Email Security malware Phishing Security Research & Analysis

October was Cybersecurity Awareness Month. Out of curiosity, I looked online to see what sort of information was available on the topic. I wasn't surprised by the results; there were thousands of links, including newspaper articles, infographics, and general awareness notices, with sources that included the U.S. Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), major news publications, expert blogs, and notices from scientific and educational institutions. The overwhelming majority of these links contained meaningful, useful, and valuable recommendations for both businesses and individuals on how to avoid becoming victims of cyber attacks.

Domain Validation (DV) SSL Certificate used for PayPal Phishing

by Þröstur Thorarensen

Email Security Phishing Web Security

As users become more aware of phishing and data theft, they become more cautious. Unfortunately as users become more cautious, attackers must become more devious. In a recent discovery, we found a phishing website  that had been issued a valid SSL Certificate. SSL Certificates are small data files that activate the HTTPS protocol and allows secure connections between a web browser and a web server. Most users don’t realize that there are actually different levels of security when it comes to SSL certificates.