Avanan Blog Attack Briefs


Attack Report: Phishing Your HR Platform in the Cloud

Avanan’s security analysts recently tracked an increased number of attacks against cloud-based HR systems such as ADP, Workday, Zenefits and Justworks, to compromise...

Read more

Attack Report: Gmail Vulnerable to Nickname Impersonation Spearphishing

The Basics of the Nickname Email Spoof Attack We have trained our users to distrust a sender's nickname and validate an identity by looking at the original email add...

Read more

Attack Report: Excel Phishing Attack that Bypasses Office 365

This targeted phishing attack against Office 365 Outlook customers impersonates Excel Online in an HTML attachment in order to trick users into entering their creden...

Read more

Attack Report: Office 365 Security Hacked Using Google Redirect

A new widespread phishing attack against Office 365 email customers uses Google's App-Engine website to redirect victims to download malicious files. Avanan security...

Read more

Attack Report: Office 365 Security Bypassed Using Hexadecimal Escape Characters

In several past blogs, we described how hackers bypass Office 365 Security with Punycode encoding, and then Unicode characters. In this attack report we discuss an a...

Read more

Attack Report: Office 365 Sharepoint from China

This attack report covers a massive attack on Office 365 users that leverages the trust Office 365 puts in its own links. 

Read more

Screen Shot 2017-08-02 at 11.28.08 AM-1.png

Attack Report: Unicode-Based Phishing

This is a large scale phishing attack against Office 365 that we have been seeing across the majority of our Office 365 customers. The attack takes advantage of Offi...

Read more

Attack Report: The Long-term Phish

“One question was what exactly were the hackers after? They had compromised at least one account, yet they still weren’t done. What was next? But the big question wa...

Read more

Blog Post2FWebinar Images (2).png

5 Phishing Attacks Office 365 and Gmail Didn't Detect in July

In the past 30 days, the Avanan platform has detected and blocked thousands of unique phishing attacks against our customers. The most interesting are those that byp...

Read more

Blog Post2FWebinar Images

Attack Report: How Google Drive Propagates Malware

This attack report covers a phishing attack against Gmail and Google Drive customers that leverages both services and exploits a blind spot in the G Suite service.

Read more

Untitled presentation-1.png

Jaff: New Ransomware Attack Blasting 5 Million Emails Per Hour

WannaCry infected over 200,000 computers in 150 countries. The large-scale ransomware attack infected a large number of global companies such as FedEx, LATAM airline...

Read more

google-doc-attack-authenticate.png

Attack Report: API-based Phishing Attack in Gmail

This attack report covers a very sophisticated phishing scheme that came in the form of an invitation to open a Google Doc.

Read more

weve-been-hacked-w.png

Attack Report: Google Redirect

Avanan recently received this email from the CISO of DEFENSCON, a think tank that works with some of the most sensitive government organizations and private defense ...

Read more

Avanan: New Puny-Phishing Attack on Office 365 Email Users

Hackers Attack a Vulnerability in Office 365 Handling of Punycode Avanan’s cloud security researchers uncovered a new attack method against Office 365 business email...

Read more

Widespread-Attack-on-Office-365-Corporate-Users-with-Zero-day-Ransomware-Virus-Featured

Widespread Attack on Office 365 Corporate Users with Zero-day Ransomware Virus

Click here if you are looking for information about the WannaCry Ransomware Attack Millions of Office 365 business users likely effected.

Read more

1 2
14-Day Free Trial – Experience the power and simplicity of Avanan Cloud Security.   Start Free Trial