PhishMe Blog

STAY CURRENT ON INDUSTRY TRENDS & PHISHME NEWS

Beware: Encryption Ransomware Varieties Pack an Extra Malware Punch

BY Brendan Griffin IN Blog

As the public becomes more and more aware of ransomware threats through journalistic outlets and the advice of security professionals, threat actors face more challenges in successfully monetizing the deployment of their tools. The longevity of ransomware as a viable criminal enterprise relies upon the continued innovation that ensures threat actors can deliver and monetize infected machines. Much of the innovation seen in 2016 was focused on defying the expectations for how ransomware is delivered such as steganographic embedding of ransomware binaries, other forms of file obfuscation, and requirements for command line argumentation. These were all put forward as ways…

READ MORE

0 comments

Unscrupulous Locky Threat Actors Impersonate US Office of Personnel Management to Deliver Ransomware

BY Brendan Griffin IN Blog

Update 2016-11-11: It is important to PhishMe to avoid hyperbolic conclusions whenever possible. In the interest of clarifying some conclusions that have been drawn from this blog post, it is important to keep in mind the nature of Locky distribution and how this malware is delivered to victims. We consider it a serious responsibility to report on very real threats in a way that lends itself to our credibility as well that the credibility of all information security professionals. PhishMe has no reason to believe that this set of emails was delivered only to victims of the OPM incident nor…

READ MORE

0 comments

Rohyt Belani Named a Technology Finalist in DC Inno’s 50 on Fire Awards

BY phishme IN Blog

We are thrilled to announce that our Co-Founder and CEO Rohyt Belani has been named a finalist in the technology category for DC Inno’s 50 on Fire Awards. These are awards recognize the top 50 movers and shakers in Washington, D.C. across a variety of business verticals and practice, honored for their innovation, energy and contributions to their respective fields while making a big impact on the Washington, D.C. area. Finalists have been carefully selected by DC Inno staff based on their 2016 editorial coverage of news and announcements, followed by an expert judging panel who will whittle down the…

READ MORE

0 comments

Viotto Keylogger: Freemium Keylogger for the Skids

BY Paul Burbage IN Blog, Cyber Crime, Phishing, Spam

The PhishMe Research team recently received a campaign escalated by one or our analysts. We’ll explore the campaign delivery, malicious attachments, and analysis of the malicious attachments, and we’ll provide a simple method for extracting the credentials being used for this keylogger family’s data exfiltration. Campaign The PhishMe Triage platform allows SOC analysts to identify, analyze, and respond to email threats that have targeted their organization. For this particular campaign, the suspicious email had an ARJ archive attachment, which contained a Windows PE32 executable. Although Windows OS does not natively open archive files with the ARJ extension, a number of third-party applications,…

READ MORE

0 comments

The PhishMe Advantage – ROI

BY PhishMe IN Phishing

Return on Investment Measuring the return on investment (ROI) from your PhishMe solution is simple and easy. The most obvious and significant impact is the dramatic reduction you will see in the overall risk of a phishing attack both getting past your perimeter protection and your skilled users but there are other ways to measure your investment: Monetary ROI Customers can realize monetary ROI from PhishMe by reducing their overall risk to phishing and other security threats. Adversaries have successfully employed phishing tactics to steal intellectual property, personally identifiable information, and other sensitive information that can harm an organization’s competitive advantage…

READ MORE

0 comments

PhishMe Announces Phishing Program Excellence Award Winners

BY PhishMe IN Blog

Palo Alto Networks, AVANGRID, and others honored at Submerge 2016 for their innovative work in phishing prevention. Leesburg, VA – October 14,  2016 – PhishMe, a global provider of phishing defense and intelligence solutions for the enterprise, has announced the winners of the PhishMe Excellence Awards at Submerge 2016, its inaugural phishing and defense summit and user conference. PhishMe chose the winners for their innovative, successful programs designed to combat phishing attacks and protect their enterprise from the risks of malware infiltration and fraud loss. An anonymous panel of judges comprised of PhishMe product experts, industry leaders and security professionals…

READ MORE

0 comments