Cyren Security Blog

Email spoofing BEC attack targeting numerous employees at once

von

Security Research & Analysis

Spear-phishing spoofed attacks have been and remain one of the most substantial cyber threats that organizations face nowadays.

Phishers abusing Google App Engine

von

Security Research & Analysis

Over the last few weeks Cyren has observed a massive spike in phishing sites hosted on appspot.com domain that Google uses for its Google App Engine. 

Microsoft reports a “leap in attack sophistication”

von

Security Research & Analysis

Last month Microsoft released a sobering Digital Defense Report.

SendGrid & Mailchimp Phishing Attacks: How Scammers Leverage Email Delivery Services To Their Advantage

von

SendGrid is a relatively popular cloud-based platform, however, phishing attacks from the platform are consistently on the rise. Learn more about SendGrid and other email delivery service phishing attacks.

Anatomy of a Phishing Attack: Stolen Microsoft 365 Credentials

von

Phishing attacks designed to steal Microsoft 365 credentials are launched every day and growing more sophisticated. We recently detected a massive attack that hid a fake Microsoft 365 login page in the incoming emails’ attachments.

PEMPEMPEM - Hiding Behind Fake Certificates!

von

Over the years, enterprise security teams and threat actors have been involved in a never-ending game of cat and mouse. Organizations pour millions of dollars to stop advanced threats, but threat actors continue finding ways to evade detection by either enhancing their code or simply repackaging malware in more ways than one. This blog discusses the use of multiple components, including the use of legitimate software and encryption to deliver malware in a new manner.