Recent Posts

Recent Blog Posts

The PhishLabs Blog

BEC Attacks: A Closer Look at Invoice Scams

Posted by Elliot Volkman on Aug 8, '19

Business Email Compromise attacks are some of the most costly and vicious forms of phishing. Unlike the standard pray and spray approaches to phishing, they take a great deal of research and personalization to persuade a victim to hand over their credentials or wire them funds. This week we’re taking a closer look at how invoice scams work, just one of the many sub-types of BEC or spearphishing attacks.

Read More

Topics: BEC

How Spear Phishing Makes BEC Attacks So Effective

Posted by Elliot Volkman on Aug 2, '19

Everyone will at some point see a standard phishing email. Be it the 409 Scam (Nigerian Prince) or even a fake password reset, these are pretty easy to spot, and most people delete it without flinching. However, for the select few who have been on the receiving end of a spear phish, it’s often a more memorable experience.

Read More

Topics: BEC

Romanian Cybercriminals Sentenced for Phishing Campaign

Posted by John LaCour on Jul 25, '19

This week, the Department of Justice for the U.S. Attorney’s Office for the Northern District of Georgia announced the final of three sentences to be carried out by cybercriminals that plead guilty to carrying out phishing campaigns involving vishing and SMiShing. I’m proud to say that the apprehension and conviction of these criminals was supported in part by intelligence PhishLabs provided in cooperation with federal law enforcement officials.

Read More

Topics: Vishing, SMiShing, Phishing Incident Response

How Business Email Compromise (BEC) Attacks Impact Everyone

Posted by Elliot Volkman on Jul 18, '19

Business email compromise (BEC) attacks are among the most effective forms of phishing in our modern world. Regardless of the technology in place, the social engineering involved easily will bypass it and can trick even trained users.

Read More

Topics: BEC

Threat Actors are Increasing Their Use of Free Hosts

Posted by Elliot Volkman on Jul 11, '19

In our continued expansion and exploration of data from this year’s annual Phishing Trends and Intelligence report it’s time to take a closer look into free hosts. More specifically, the free hosts and domains that threat actors abuse in order to further distribute phishing attacks. While phishing sites that abuse free hosts don’t make up the majority, the use of them is increasing dramatically.

Read More

Topics: PTI Report

We Are a Best Place to Work Four Years in a Row!

Posted by The PhishLabs Team on Jul 9, '19

Our team is happy to announce that we have been named a Best Place to Work by SC Biz News in partnership with the South Carolina Chamber of Commerce and Best Companies Group.

This is the fourth consecutive year that we have been named to the list. The 2019 list is made up of 75 companies, and the full ranking is expected to be announced on August 1 of this year.

Read More

Topics: Company News

Phishing  Number One Cause of Data Breaches: Lessons from Verizon DBIR

Posted by Stacy Shelley on Jun 27, '19

In the cyber security world, few research reports are more widely respected than Verizon’s annual Data Breach Investigations Report (DBIR).

Read More

Topics: Phishing, Threat Intelligence, Phishing Trends and Intelligence Report,

More Than Half of Phishing Sites Now Use HTTPS

Posted by Elliot Volkman on Jun 20, '19

As more of the web further embrace HTTPS and SSL certs, it’s becoming a requirement that threat actors use it, too. By the end of Q1 2019, more than half of all phishing sites have employed the use of HTTPS, now up to 58%. This is a major milestone and shows that threat actors actions often mirror that of the majority of users.

Read More

Topics: https

PhishLabs Enhances Email Incident Response Service

Posted by The PhishLabs Team on Jun 18, '19

Today we are excited to announce the general availability of our enhanced Email Incident Response service. Email Incident Response detects, prevents, and automatically responds to threats that bypass email security technology.

Read More

Topics: Email Incident Response

The Definition of Phishing

Posted by Elliot Volkman on Jun 12, '19

Defining phishing is simple, right? Not exactly.

Read More

Topics: Phishing

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Recent Posts

Subscribe to Email Updates

Posts by Topic

see all