Resources

Financials See Increase in Phishing Attacks, Compromised Sites Lead Staging Methods in Q3
Blog
Blog

Financials See Increase in Phishing Attacks, Compromised Sites Lead Staging Methods in Q3

By Jessica Ryan on Thu, 11/10/2022
In Q3, nearly 80% of threat actors opted to compromise existing websites or abuse free tools when staging phishing sites, according to the latest data from Fortra’s PhishLabs. While Compromised Sites represented the lion’s share of staging activity, URL Shorteners, Free Domain Registrations, and Developer Tools all experienced increased abuse in Q3 and pointed to sustained criminal interest in no...
Social Media Mitigation Best Practices for All Financial Institutions
Blog
Blog

Social Media Mitigation Best Practices for All Financial Institutions

By Jessica Ryan on Tue, 10/18/2022
The financial industry continues to experience the largest volume of abuse among all industries on social media. In Q3 banks, credit unions, and other F.I.’s contributed to nearly three-quarters of all attacks on social platforms, with national banks alone more than tripling the volume of the top targeted non-financial, retail. The top threats to financial institutions on social media consist of...
RedLine Stealer Leads Payloads in Q3
Blog
Blog

RedLine Stealer Leads Payloads in Q3

By Jessica Ryan on Thu, 10/13/2022
In Q3, Redline Stealer represented nearly half of all malware attacks targeting corporate user inboxes. This is the first quarter Redline has led payload volume since PhishLabs began reporting on malware activity. Email payloads remain the primary delivery method of ransomware targeting organizations. PhishLabs continuously monitors payload families reported in corporate inboxes to help mitigate...
What is Email Spoofing?
Blog
Blog

What is Email Spoofing?

By Monica Delyani on Thu, 10/06/2022
Courtesy of Agari by Fortra Email spoofing is one of the most common forms of cybercriminal activity, specifically a form of identity deception that's widely used in phishing and spam attacks. It underpins the mechanism required to conduct hacking activities, and it can take many forms. Unfortunately, most email users will eventually receive an email that has been spoofed—whether they know it or...
Crucial Tech Podcast with Agari: Hybrid Vishing Attacks
Blog
Blog

Crucial Tech Podcast with Agari: Hybrid Vishing Attacks

By Jessica Ryan on Thu, 09/29/2022
Hybrid vishing attacks have increased 500% year-over-year as cybercriminals find success using these techniques to steal sensitive information. Listen as Agari’s John Wilson discusses the latest research from Agari and PhishLabs by Fortra. Click here to listen to the podcast.

How to Mitigate Online Counterfeit Threats

How to Mitigate Online Counterfeit Threats
How to Mitigate Online Counterfeit Threats
phishlabs_admin Thu, 01/11/2024 - 15:06
The broad scope of counterfeit campaigns and unclear boundaries of abuse make it challenging to successfully mitigate online threats targeting retail brands. There is a fine line between infringement and fair use of publicly made materials, as well as immeasurable online environments where counterfeit campaigns may live and grow. Additionally, bad actors are continuously modifying attack...

How to Collect Intelligence on Threats Targeting Retail Brands

How to Collect Intelligence on Threats Targeting Retail Brands
How to Collect Intelligence on Threats Targeting Retail Brands
phishlabs_admin Thu, 01/11/2024 - 15:06
Retail brands are increasingly targeted with fraudulent advertisements, fake social accounts, and falsely branded websites. These multipronged counterfeit campaigns redirect sales and compromise consumer data using brand recognition, the same component critical to driving sales within the retail industry. The massive expansion of ecommerce and online consumer-to-retail interaction creates a...

Chat-Based Services, Finance, Heavily Abused on the Dark Web in Q2

Chat-Based Services, Finance, Heavily Abused on the Dark Web in Q2
Chat-Based Services, Finance, Heavily Abused on the Dark Web in Q2
phishlabs_admin Thu, 01/11/2024 - 15:06
Nearly half of stolen data on the Dark Web was marketed through Chat-Based Services in Q2 after a sharp increase in illegal transactions, according to the Agari and PhishLabs Quarterly Threat Trends & Intelligence Report . The advertisement and exchange of stolen information on the Dark Web is volatile due to the constant threat of disruption or seizure by authorities. Often, when one site is...
Q2 Phishing Volume Up, Compromised Sites Lead Staging Methods
Blog
Blog

Q2 Phishing Volume Up, Compromised Sites Lead Staging Methods

By Jessica Ryan on Thu, 09/01/2022
In Q2, four out of five phishing sites were staged using infrastructure that required no investment on the part of threat actors, including Compromised Sites and Free Tools and Services, according to the Agari & PhishLabs Quarterly Threat Trends & Intelligence Report. Although the volume of Paid Domain Registrations associated with phishing sites grew slightly, threat actors continue to choose no...
Old Threats, New High: Response-Based Emails Increase in Q2
Blog
Blog

Old Threats, New High: Response-Based Emails Increase in Q2

By Jessica Ryan on Thu, 08/25/2022
In Q2, Response-Based emails targeting corporate users reached the highest volume since 2020, according to the Agari and PhishLabs Quarterly Threat Trends & Intelligence Report . Malicious and potentially damaging emails targeting corporate inboxes have climbed to a three-quarter high, and include Response-Based scams, Credential Theft, and Malware. Every quarter, Agari and PhishLabs analyze...
On-Demand Webinar
On-Demand Webinar

Quarterly Threat Trends & Intelligence Webinar (August 2022)

John Wilson, Senior Fellow for Threat Research at Agari by Fortra Throughout Q2, Agari and PhishLabs detected and mitigated hundreds of thousands of phishing, social media, email, and dark web threats targeting a broad range of enterprises and brands. The Quarterly Threat Trends & Intelligence Report provides an analysis of the latest findings and insights into key trends shaping the threat...
Account Takeover Protection
Executive Protection
Online Impersonation
External Data Leaks
Fraud, Impersonation Fuel Q2 Increase in Social Media Attacks
Blog
Blog

Fraud, Impersonation Fuel Q2 Increase in Social Media Attacks

By Jessica Ryan on Thu, 08/18/2022
In Q2, malicious attacks targeting organizations on social media have increased more than 20% over Q1, according to the latest Agari and PhishLabs’ Quarterly Threat Trends & Intelligence Report. Agari and PhishLabs analyze hundreds of thousands of phishing and social media attacks every quarter to identify the top threats targeting enterprises, their brands, and their employees. In this post, we...
quarterly threat trends & intelligence report thumbnail
Guide
Guide

Quarterly Threat Trends & Intelligence August 2022

August 2022 In Q2, Agari and PhishLabs detected and mitigated hundreds of thousands of phishing, social media, email, and dark web threats targeting a broad range of enterprises and brands. The Quarterly Threat Trends & Intelligence Report provides an analysis of the latest findings and insights into key trends shaping the threat landscape. Readers will learn: How phishing attack volume changed...
Press Release
Press Release

Response-Based Email Threats Targeting Corporate Inboxes Are The Highest Since 2020, According To Fortra’ Latest Agari And PhishLabs Report

Hybrid Vishing Attacks Increased in Volume by 625% since Q1 2021 MINNEAPOLIS – August 15, 2022 – Response-based attacks targeting corporate inboxes have climbed to their highest volume since 2020, representing 41 percent of all email-based scams targeting employees, during Q2 of this year. This is according to the latest Quarterly Threat Trends & Intelligence Report from Agari and PhishLabs , part...
New Report Documents Highest Volume of Response-Based Email Threats Since 2020
Blog
Blog

New Report Documents Highest Volume of Response-Based Email Threats Since 2020

By Jessica Ryan on Mon, 08/15/2022
In Q2, Response-Based attacks targeting corporate inboxes climbed to their highest volume since 2020, according to the latest Quarterly Threat Trends & Intelligence Report from Agari and PhishLabs . Response-Based threats such as Advanced-Fee Fraud, Business Email Compromise (BEC), and hybrid Vishing attacks all demonstrated increased volume in Q2, with Vishing specifically growing 625% over the...
Top 10 Ways To Recognize a Phishing Email
Blog
Blog

Top 10 Ways To Recognize a Phishing Email

Thu, 08/11/2022
Courtesy of Digital Guardian by Fortra Attackers continue to find clever new ways to disguise phishing emails. Here are 10 different ways you can identify a phishing email. While large-scale ransomware and distributed denial of service (DDoS) attacks may be taking up up the bulk of people’s cybersecurity news feeds, organizations have more to worry about than the newest and most sophisticated...
The “I’s” Have It: How BEC Scammers Validate New Targets with Blank Emails
Blog
Blog

The “I’s” Have It: How BEC Scammers Validate New Targets with Blank Emails

By John Wilson on Thu, 08/04/2022
Courtesy of Agari by Fortra. Have you ever received a blank email from someone you don’t know? If you have, it may have been from a cybercriminal making sure your email account is legitimate prior to a BEC attack . We released a report on a business email compromise (BEC) cybercriminal group named London Blue in December 2018. The report dove into the organizational structure of West African...
Top 4 Threats to Retail Brands
Blog
Blog

Top 4 Threats to Retail Brands

By Jessica Ryan on Thu, 07/28/2022
Cyber attacks targeting retail brands have increased dramatically over the last year. Since Q3 2021, retail has experienced a nearly 500% increase in attacks on social media alone. Counterfeit websites and look-alike domains are also among the top threats to online retailers. Attackers incorporate stolen designs and trademarks to stand up counterfeit sites, outbid legitimate businesses with...
10,000 organisations targeted by phishing attack that bypasses multi-factor authentication
Blog
Blog

10,000 organisations targeted by phishing attack that bypasses multi-factor authentication

Thu, 07/21/2022
Courtesy of Tripwire by Fortra. Microsoft has shared details of a widespread phishing campaign that not only attempted to steal the passwords of targeted organisations, but was also capable of circumventing multi-factor authentication (MFA) defences. The attackers used AiTM (Attacker-in-The-Middle) reverse-proxy sites to pose as Office 365 login pages which requested MFA codes, and then use them...
Account Takeover Protection
Interview: How Organizations Can Proactively Tackle Phishing Attacks
Blog
Blog

Interview: How Organizations Can Proactively Tackle Phishing Attacks

Tue, 07/19/2022
Courtesy of Expert Insights Billy Smith is the Managing Director at PhishLabs by Fortra. With a wealth of experience in the IT and cybersecurity industry, Smith is an expert in using curated threat intelligence to take down cyberthreats. In his role at PhishLabs, Smith enables organizations to proactively identify and remediate threats across their digital channels, including email, social media...