Resources
video

Social Platform Impersonation: Types, Consequences, and Defenses

Wed, 04/17/2024
As the number of people who utilize social media for news and information increases, so do social media impersonations. In fact, impersonations overall remain the top threat type used against organizations, but Fortra research found that fake executive profiles surpassed brand and employee impersonations for a third straight quarter. It’s not a coincidence that trust and impersonations are growing...
cta_page
cta_page

Social Platform Impersonations: Types, Consequences, and Defenses

Social media is bigger than ever and threats are getting more sophisticated, but gone are the days when people could simply request to have an impersonation removed. Learn how to sift through the social media threat noise and get effective mitigation of social media threats including impersonations.
Financials and Card Data Top Q3 Targets on the Dark Web
Blog
Blog

Abusing Data to Avoid Detection: Cybercriminal Adoption of Browser Fingerprinting

Fri, 04/05/2024
Browser fingerprinting is one of many tactics phishing site authors use to evade security checks and lengthen the lifespan of malicious campaigns. While browser fingerprinting has been used by legitimate organizations to uniquely identify web browsers for nearly 15 years, it is now commonly exploited by cybercriminals. Today, it is considered widely used for phishing purposes.
Online Impersonation
Live Webinar
Live Webinar
Apr
30

Identify and Disrupt Threats Before Attackers Strike

-
Cary Hudgins |
Michael Tyler
An organization’s threat data is invaluable in stopping a portion of external threats, but security teams often find their intelligence incomplete. Fortra introduces Threat Intelligence to empower organizations to preemptively combat threats. Join us as Fortra experts detail expanded capabilities, insight, and anti-threat measures to better address blind spots, proactively disrupt threat actors...
FREE
10 AM CT
cta_page
cta_page

Compromised Credentials Report

Fortra’s PhishLabs now gives organizations broad visibility into actionable stolen credentials uncovered from the dark web. PhishLabs’ new Compromised Credentials Monitoring helps proactively defend against potential attacks by delivering visibility to implement countermeasures designed to protect your brand, employees, and customers. Request the report to learn what credentials have been exposed...
Datasheet
Datasheet

Fortra Threat Intelligence Services

Fortra’s Threat Intelligence services empower enterprises to take proactive measures against threats by delivering critical insight to disrupt threat actors, prevent fraud, and enrich security controls.
Datasheet
Datasheet

Dark Web Monitoring

See how Fortra's Threat Intelligence services empower enterprises to take proactive measures against threats by delivering critical insight to disrupt threat actors, prevent fraud, and enrich security controls.
Blog
Blog

Dark Web Actors Overwhelmingly Target Card Data, Finance in Q4

Thu, 03/14/2024
Credit unions were the top targeted industry on the Dark Web in Q4 2023, continuing its lead over the historically targeted banking industry for the third consecutive quarter. Financials as a whole continue to be a primary focus of criminal groups on underground channels, with more than 91% of malicious activity directed at either credit unions, banks, financial services, or payment services...
Blog
Blog

Social Media Attacks Focus on Financials, Executives in Q4

By Jessica Ryan on Thu, 03/07/2024
In Q4, impersonation threats made up more than 45% of total attacks on social media, with the vast majority targeting banking and financial services. Impersonation on social media continues to grow, with threats specifically targeting corporate executives responsible for driving the majority of volume for three consecutive quarters. The average number of social media attacks per business has...
Exclamation point with malware on screen
Blog
Blog

DarkLoader Leads Malware Attacks in Q4

Thu, 02/29/2024
In Q4, three malware families represented more than 93% of all payload volume targeting end users, with Malware-as-a-Service (MaaS) DarkLoader leading all other reports. Fortra first received reports of DarkLoader in user inboxes in Q3, with attack volume picking up significantly beginning in October. The shift to criminal activity associated with DarkLoader comes after coordinated efforts by...
Datasheet
Datasheet

Compromised Credentials Monitoring

Learn how PhishLabs Compromised Credentials Monitoring can deliver broad visibility allowing organizations to quickly respond and implement countermeasures such as forced password resets and lockouts to guard against potential account takeovers, breaches, and malware attacks.
Blog
Blog

O365 Volume Up in Q4 as Cybercriminals Target Brands in Credential Theft Attacks

Thu, 02/22/2024
The majority of malicious emails reported in user inboxes contained a link to a phishing site, making credential theft emails the attack method of choice for cybercriminals in Q4. Credential theft made up nearly 60% of all reported incidents, with more than half of the volume attributed to O365 attacks. Despite the threat actor preference toward this threat type, credential theft attacks declined...
keyboard and globe
Blog
Blog

Phishing-as-a-Service Profile: LabHost Threat Actor Group

Thu, 02/15/2024
Fortra is monitoring malicious activity targeting Canadian banks conducted by Phishing-as-a-Service group LabHost. Throughout 2022 and 2023, Fortra has observed phishing attacks connected with Phishing-as-a-Service (PhaaS) groups grow as threat actors use the tools provided through membership services to launch a variety of campaigns. The providers of these platforms boast features such as access...
laptop with social media symbols
blog

Record Number of Phishing Sites Impersonate Social Media to Target Victims in Q4

By Jessica Ryan on Thu, 02/08/2024
Phishing sites impersonated the social media industry more than any other in Q2, Q3, and Q4 of 2023. In Q4 alone, social media phish leapt nearly 20%, reaching the highest volume of abuse (over 67%) since Fortra has reported on this data point. Every quarter, Fortra’s PhishLabs examines hundreds of thousands of phishing attacks targeting enterprises and their brands. In this post, we break down...
TLDs in honeycomb pattern
Blog
Blog

How Threat Actors will Leverage Domain Impersonation in 2024

By Jessica Ryan on Thu, 02/01/2024
Historically, the average brand is targeted by 40 look-alike domains per month. Look-alikes are a strategic component of malicious lures and websites and used in a variety of spaces including social platforms, text messages, the open web, and email. An attack that incorporates a look-alike domain can mean the difference between a convincing campaign and a suspicious one, with a versatility that...
On-Demand Webinar
On-Demand Webinar

2023 Domain Impersonation Report - Key Findings

2023 Domain Protection Report – Key Findings The average brand is targeted by 40 look-alike domains per month. Domain impersonation is the foundation for a multitude of online threats. Watch Elyse Neumann, Fortra’s Sr. Director of Client Operations, and Eric George, Fortra’s Director of Solutions Engineering, as they discuss the key findings from Fortra’s 2023 Domain Impersonation Report. Learn...
Executive Attacks on Social Media Hit All-Time High as Analysts Point to AI
Blog
Blog

Executive Attacks on Social Media Hit All-Time High as Analysts Point to AI

By Jessica Ryan on Tue, 01/16/2024
Executive impersonation on social media is at an all-time high as threat actors take advantage of AI to improve and scale their attacks. In Q3, accounts pretending to belong to high-ranking executives on social media climbed to more than 54% of total impersonation volume, surpassing brand attacks for the first time since Fortra began tracking this data. The volume and composition of these attacks...