fbpx
News
MasterCard Purchases Ethoca
News
Marriott CEO Testifies to Congress About 2018 Data Breach
News
Medical data breach may have exposed info about 600,000 Michigan patients
News
German Ecommerce Worth 58.8 Billion Euros in 2019
News
NJ Data Breaches Lead to Increased Focus on Cybersecurity
News
Worldnet Payments Enters Agreement with POSDATA
News
Marqeta Raises $250 Million Series E Funding
News
Doxo Offers Apple Pay Solutions
News
UK Banks Prevented More than £1.12b in Card Fraud in 2018
News
Verifi Launches Self-Service Chargeback Representment
News
One of the Biggest Data Breaches Ever Compromises Personal Info From Nearly 1 Billion Email Addresses
News
540 Million Facebook Accounts Exposed on Vulnerable AWS Servers
News
Facebook Changes Terms to Comply with European Commission Demands
News
Nethone Raises Over $1 Million to Develop Artificial Intelligence to Fight Chargebacks
News
Chargeback Gurus Enters the Finals of Dallas Business Journal Entrepreneur Contest
News
Terbium Labs Reveals the Dark Web’s “How To” Guide to Committing Ecommerce Fraud
News
Thales Finishes Acquisition of Digital Identity and Security Company Gemalto
News
Ecommerce Fraud Events: Airline & Travel Payments Summit 2019
News
McDonald’s App Hacked In $2,000 ATO Fraud Attack
News
IntSights Releases New Report On the Biggest Fraud Prevention Challenges Facing Banking & Financial Services
News
Online Advertising Fraud Down Nearly $1 Billion Dollars, According to New Association of National Advertisers Report
News
Synthetic Identity Fraud: TransUnion Announces New Rapid Default Model
News
PrismWeb Fraud Attack: Hackers Steal Student Payment Data from 197 American & Canadian Universities
News
Checkout.com Raises $230m Series A Round of Funding
News
Barracuda Networks Releases New ATO Report
News
2019 AFP Payments Fraud and Control Survey Released
News
Sextortion Email Scam Nets Fraudsters $1 million in Bitcoin
News
IBM X-Force Threat Intelligence Index 2019 Released
News
Avanan Releases Global Phish Report 2019
News
EdgeWave releases new Report: “How to Fight the Phishing Epidemic and Win”
News
RSA Q1 2019 Fraud Report Released
News
BalBix Releases New Report: How to Use AI to Tackle Cyber-Security Challenges
News
PayPal Commerce Platform Launches
News
ECBSV SSN Verification Pilot Program Begins
News
Zelle Scam Cleans Out the Bank Accounts of Unsuspecting Victims
News
Google Pay PayPal Connection Expanded
News
Data Breach Exposes Secrets of Ford, TD Bank
News
Visa Acquires Verifi
News
Orvibo IoT Devices Suffer Massive Data Breach
News
ICO Fines British Airways £183.39m for Data Breach
News
PayPal Xoom Europe Launches
News
Mnuchin: Facebook Libra “Threat”
News
FinCEN Business Email Compromise Report Released
News
Malwarebytes Labs Cybercrime Tactics and Techniques Q1 2019 Report Released
News
Fake Google Domains Target Magento Users
News
Capital One Data Breach Hits 100 Million US Customers
News
Pearson Data Breach Compromises 100,000+ Students
News
Capital One Data Breach Class Action Lawsuit Initiated
News
NormShield Releases State of Financial Phishing Q1 2019
Sunday, August 18, 2019
News
MasterCard Purchases Ethoca
News
Marriott CEO Testifies to Congress About 2018 Data Breach
News
Medical data breach may have exposed info about 600,000 Michigan patients
News
German Ecommerce Worth 58.8 Billion Euros in 2019
News
NJ Data Breaches Lead to Increased Focus on Cybersecurity
News
Worldnet Payments Enters Agreement with POSDATA
News
Marqeta Raises $250 Million Series E Funding
News
Doxo Offers Apple Pay Solutions
News
UK Banks Prevented More than £1.12b in Card Fraud in 2018
News
Verifi Launches Self-Service Chargeback Representment
News
One of the Biggest Data Breaches Ever Compromises Personal Info From Nearly 1 Billion Email Addresses
News
540 Million Facebook Accounts Exposed on Vulnerable AWS Servers
News
Facebook Changes Terms to Comply with European Commission Demands
News
Nethone Raises Over $1 Million to Develop Artificial Intelligence to Fight Chargebacks
News
Chargeback Gurus Enters the Finals of Dallas Business Journal Entrepreneur Contest
News
Terbium Labs Reveals the Dark Web’s “How To” Guide to Committing Ecommerce Fraud
News
Thales Finishes Acquisition of Digital Identity and Security Company Gemalto
News
Ecommerce Fraud Events: Airline & Travel Payments Summit 2019
News
McDonald’s App Hacked In $2,000 ATO Fraud Attack
News
IntSights Releases New Report On the Biggest Fraud Prevention Challenges Facing Banking & Financial Services
News
Online Advertising Fraud Down Nearly $1 Billion Dollars, According to New Association of National Advertisers Report
News
Synthetic Identity Fraud: TransUnion Announces New Rapid Default Model
News
PrismWeb Fraud Attack: Hackers Steal Student Payment Data from 197 American & Canadian Universities
News
Checkout.com Raises $230m Series A Round of Funding
News
Barracuda Networks Releases New ATO Report
News
2019 AFP Payments Fraud and Control Survey Released
News
Sextortion Email Scam Nets Fraudsters $1 million in Bitcoin
News
IBM X-Force Threat Intelligence Index 2019 Released
News
Avanan Releases Global Phish Report 2019
News
EdgeWave releases new Report: “How to Fight the Phishing Epidemic and Win”
News
RSA Q1 2019 Fraud Report Released
News
BalBix Releases New Report: How to Use AI to Tackle Cyber-Security Challenges
News
PayPal Commerce Platform Launches
News
ECBSV SSN Verification Pilot Program Begins
News
Zelle Scam Cleans Out the Bank Accounts of Unsuspecting Victims
News
Google Pay PayPal Connection Expanded
News
Data Breach Exposes Secrets of Ford, TD Bank
News
Visa Acquires Verifi
News
Orvibo IoT Devices Suffer Massive Data Breach
News
ICO Fines British Airways £183.39m for Data Breach
News
PayPal Xoom Europe Launches
News
Mnuchin: Facebook Libra “Threat”
News
FinCEN Business Email Compromise Report Released
News
Malwarebytes Labs Cybercrime Tactics and Techniques Q1 2019 Report Released
News
Fake Google Domains Target Magento Users
News
Capital One Data Breach Hits 100 Million US Customers
News
Pearson Data Breach Compromises 100,000+ Students
News
Capital One Data Breach Class Action Lawsuit Initiated
News
NormShield Releases State of Financial Phishing Q1 2019

Avanan Releases Global Phish Report 2019

May 24, 2019
|
No Comments
|
News

Avanan, a cloud security risk-management platform specializing in the protection of email, messaging, and file-sharing, released its “Global Phish Report 2019”. The report analyzes more than 55,000,000 emails sent to Office365 and GSuite for evidence of phishing attacks.

The report gives enterprise businesses a peek behind the curtain of the current techniques fraudsters use to conduct successful phishing attacks. According to the report, they should be paying attention. There is currently a trend towards email phishing attacks, and it is unlikely to abate anytime soon.

“Over the past decade, phishing attacks have become the most widespread email threat to organizations around the globe,” the report states.

Office365 Security Tools Inadequate

The key finding of the report is the number of holes in Office 365’s detection of phishing emails. The data shows the fraud prevention tools native to the program could not identify 30.5% of phishing attacks. That means nearly 1 in 3 phishing emails were successfully delivered to the recipient’s inbox.

In addition, the report highlights the use of “obfuscation” by fraudsters. This technique involves “obfuscating” malicious URL links — meaning changing them to the point Office365 does not recognize them. This gives thieves the option of using known malicious links, often used in large-scale fraud attacks such as “NoRelationship” and “BaseStriker”.

“One in every 99 emails is a phishing attack, using malicious links and attachments as the main vector” the report states. “Of the phishing attacks we analyzed, 25% bypassed Office 365 security, a number that is likely to increase as hackers design new obfuscation methods that take advantage of zero-day vulnerabilities on the platform”

A Breakdown of “Phishing Vectors”

The report also provides merchants with a breakdown of the current ways fraudsters conduct these kinds of attacks and the most common indicators to look for in order to detect them, including:

  • Spearphishing. Targets employees with access to financial records and accounts.
  • Extortion. Blackmails employees with the release of personally embarrassing information.
  • Credential Harvesting. Uncovers the usernames and passwords needed to enter key accounts.

The report stresses the need for enterprise businesses to take the problem seriously. According to the data presented, an over-reliance on the native fraud prevention tools in email clients leaves businesses vulnerable to attacks.

“Phishing attacks are becoming increasingly sophisticated and difficult for humans and machines alike to detect”, the report states. “Employees are bombarded with spearphishing, extortion, credential harvesting, and malware attacks. Yet Office 365 and Gmail cannot reliably bloc emails containing malicious language, links, or attachments.”

Sources:

https://www.avanan.com/

https://www.avanan.com/global-phish-report

 

Join our Community

join the community

Our Sponsors

Stay in Touch

LINKEDIN

YOUTUBE