Avanan Blog Attack Briefs (8)


BioNTech COVID-19 Vaccine Spoofed in Email Campaign

As happens with all major news events, Avanan is tracking a tremendous number of fake sites, emails and even phone calls and texts which all offer an insider's acces...

Read more

Microsoft Teams: Spoofing Notifications to Steal Credentials

As Microsoft Teams continues to skyrocket in growth, hackers are going to flock to the service. We wrote recently about how a compromise at a partner organization al...

Read more

ATP Miss of the Week: 12/16/2020

This week, we uncovered an attack that utilizes a voice message file. We saw this across multiple organizations.

Read more

Come On In: LinkedIn Used for Spoofing

Quick quiz: which social media platform are hackers impersonating most effectively? If you guessed LinkedIn, good for you.  Yes, LinkedIn has quietly become a haven ...

Read more

Slack Continues to Be Top of Mind for Hackers' Malicious Links Attacks

A few months ago, we wrote about a Slack-based attack making waves. In the attack, hackers utilized a Slack redirect to bypass Microsoft SafeLinks. It looks like thi...

Read more

ATP Miss of the Week: 12/09/2020

This week, we uncovered an "eFax" email across multiple organizations. The email comes across as an eFax with a link to view documents. 

Read more

Global Financial Institution's Microsoft Teams Account Compromised by Malware

Summary A compromised Microsoft Teams account at a partner organization fooled users at a global financial institution into sharing insider information. After exfilt...

Read more

SPAM-EGY Takes on EDU

Highlights: Avanan researchers have identified an aggressive attack against higher-education targets that uses a number of obfuscation techniques developed by the SP...

Read more

Hackers Targeting G-Suite via DocuSign

Remote work has been a boon for a number of companies and DocuSign is no different. The e-signature company has seen 61% year-over-year growth. As companies to work-...

Read more

Not-So-Sweet Home: Mortgage Wire Fraud Scams Explode

  You're about to close on a house. Congrats! But it's not all dream-come-true. You have to be on the lookout for mortgage wire fraud.

Read more

MFA Is Not The Cure-All

According to official Microsoft guidance, multi-factor authentication can solve everything. Seriously. Read on:

Read more

Passing Notes: Phishing Attack Leverages OneNote

One of the most appealing parts of the Microsoft suite is all that you can do with it. Spreadsheets in Excel. Presentations in PowerPoint. Note taking in OneNote. Bu...

Read more

Ransomware: What an Attack Looks Like

You've seen a ton in the news about ransomware. Massive ransomware increases at hospitals. Local governments falling prey to ransomware. Schools being held for ranso...

Read more

Government Agencies See Double the Phishing Attacks Over Last Two Weeks

With the election here, more and more malicious attacks have started hitting inboxes. Whether it's phishing messages related to the candidates themselves, healthcare...

Read more

Ransomware Threat Picks Up for Health Care Organizations

A joint cybersecurity advisory was released by the FBI, CISA and HHS detailing an increased threat of Ryuk ransomware targeted at health care organizations. 

Read more

Excel-ent Adventure: Getting Past Proofpoint with Spreadsheet Obfuscation

Over the course of your working lifetime, how many Excel spreadsheets have you been sent?

Read more

Emerging Phishing Attack Uses HTML Redirection to Bypass Microsoft ATP

Avanan researchers have uncovered an emerging phishing technique that has not yet been released by hackers and is still in testing mode on the dark web, but promises...

Read more

Bonu$ Bu$ter: Fake Bonus Notification Steals Credentials Instead

There are few things better than receiving a bonus at work for a job well done. 

Read more

We Played Along With a Business Email Compromise Scam. Here's What Happened Next.

As an email security company, we see all sorts of attacks and scams. It's why our Attack Briefs uncover so many new hacking trends.

Read more

14-Day Free Trial – Experience the power and simplicity of Avanan Cloud Security.   Start Free Trial