PhishMe Blog

STAY CURRENT ON INDUSTRY TRENDS & PHISHME NEWS

The (BEC) Song Remains the Same

BY Heather McCalley IN Phishing

I had a dream, a crazy dream, that we stopped responding to ridiculous email messages demanding that a wire be sent immediately.  Also in that dream, all the bad guys were caught and had to pay restitution and go to jail. While that second part may never happen, there has been definite progress toward the dream goal and there are definite steps to take to ensure that you – and others in your company – do not fall victim to a BEC email. Coordinated by the National Cyber-Forensics & Training Alliance (NCFTA), contact information and incident details are being swapped quickly…

READ MORE

0 comments

Behavioral Conditioning, Not Awareness, Is the Answer to Phishing

BY phishme IN Blog, Phishing

BY AARON HIGBEE AND SCOTT GREAUX You don’t stop phishing attacks by raising user awareness. A recent study conducted by a German university confirms what we at PhishMe have known all along: Focusing on awareness isn’t the point. The real solution is behavioral conditioning. The study, conducted by Friedrich-Alexander University (FAU) of Erlangen-Nuremberg, Germany, used 1,700 students to simulate spear phishing attacks. An August 31 Ars Technica article published preliminary results of the study showing at least 50% of students clicked simulated phishes, even though they understood the risks. With its headline, “So Much for Counter-phishing Training: Half of People…

READ MORE

0 comments

PhishMe Shortlisted as Finalist in Two Categories at Coveted 2016 Computing Security Awards

BY PhishMe IN Blog

We are proud to confirm that PhishMe has been named as a finalist in two categories at the 2016 Computing Security Awards. PhishMe Simulator is shortlisted for ‘Anti Phishing Solution of the Year’ and ‘The Human Factor Award’ at a ceremony set to take place at London’s Cumberland Hotel on October 13th, 2016. The Computing Security Awards champions the solutions and providers that help to keep organizations secure. Shortlisted for two distinct categories, PhishMe has been recognized not only for developing innovative human phishing defense and intelligence solutions, but also for its services to help organizations reduce phishing risk and…

READ MORE

0 comments

PhishMe Announces New Excellence Awards Program for Customers

BY phishme IN Blog

PhishMe is proud to announce our first-ever PhishMe Excellence Awards, taking place at our inaugural phishing defense summit and user conference, PhishMe Submerge, this September. The PhishMe Excellence Awards showcase the outstanding achievements of security professionals to defend their companies against the damages of phishing. The companies and individuals recognized by the PhishMe Excellence awards are industry leaders, chosen for their innovative, successful programs to combat phishing attacks and protect their enterprise from the risks of malware infiltration and fraud loss. Awards are distributed for performance excellence in three categories: Phishing Defense Program of the Year: The most effective all-around,…

READ MORE

0 comments

Macro Based Anti-Analysis

BY Sean Wilson IN Blog

Over the past several months PhishMe research has noticed an increase with Anti-Analysis techniques being included within Office macro and script files. This is the first post in a series where we look at the inclusion and effectiveness of these methods. Although the use of Anti-Analysis techniques is not new, they are generally observed within the packed payload in an effort to avoid detection by endpoint security solutions. Most recently we came across a campaign of emails which included a malicious Microsoft Word document. The document contains a standard lure using an image instructing the user to enable active content…

READ MORE

0 comments

PhishMe Triage™ Advances Malware Investigation with Lastline Analyst

BY PhishMe IN Blog

Phishing Incident Response – Through Automated Malware Analysis Conditioning employees to detect and report suspicious email is a strategy security leaders have adopted through PhishMe’s innovative solutions. CISOs have realized that while technology continues to get better at preventing malware, the attackers continue to elevate their game and never rests, and neglecting people as defenders would be a mistake.

READ MORE

0 comments