Cyren Security Blog

Dissecting a UnionBank Phishing Campaign

von

We have been seeing email notifications about login attempts to UnionBank online accounts, prompting users to reset their password if they found the login attempts were suspicious.

Fake DocuSign Download Page Leads to Hentai Onichan Ransomware

von

Security Research & Analysis

We recently received samples that we suspected were “phishy” in nature, but after analyzing the email attachment a severe threat was exposed.

A Dridex Phishing Campaign

von

The “Purchase” themed email is a commonly used subject in phishing campaigns. Threat actors can easily scrape the internet, in other words, specific data is very easily gathered and copied from the web.

Phishing campaign masquerading Excel template in the html attachment

von

Security Research & Analysis

Phishing remains one of the most popular types of corporate attacks in terms of its prevalence, and therefore it is not surprising that attackers are coming up with increasingly sophisticated methods to obtain the victim's personal data.

Loose SPF, DKIM, DMARC, and ARC Settings Sabotage Security

von

Security Research & Analysis

It’s safe to say that all of our Cyren Inbox Security customers use the native Office 365 security capabilities of Exchange Online Protection and Advanced Threat Protection (now collectively called Microsoft Defender for Office 365).

“Are you satisfied?” Cyren sees increasing use of forms in account takeover attacks

von

Security Research & Analysis

Every internet user participates in surveys every day: “Do you like our service?” “Are you satisfied with the order?” “Please, fill the form below to make us better for you!”