Avanan Blog Blog (15)


Microsoft Advanced Threat Protection vs Avanan

Microsoft knows that Office 365's default security features are not enough to keep an organization protected, which is why they created Microsoft Advanced Threat Pro...

Read more

VerizonDataBreachInvestigationsReport.png

Verizon's 2017 Data Breach Investigations Report: Malware and Phishing

Earlier this month, Verizon released their 10th annual Data Breach Investigations Report. The 76-page report covers the data breach trends across all industries—from...

Read more

Was My Email Inbox Hacked? What To Do If You've Been Hacked

Before you continue reading, you should check to see if your email address is one of the millions that has already been compromised: HaveIBeenPwned.com. An attacker ...

Read more

Attack Report: Gmail Vulnerable to Nickname Impersonation Spearphishing

The Basics of the Nickname Email Spoof Attack We have trained our users to distrust a sender's nickname and validate an identity by looking at the original email add...

Read more

Blog Post2FWebinar Images (34).png

What to Do After You Have Fallen Victim to a Phishing Attack

Even if you could block 100% of malware and phishing, it is still possible to have a compromised account: a lost post-it note, a massive Linkedin-type password breac...

Read more

Attack Report: Excel Phishing Attack that Bypasses Office 365

This targeted phishing attack against Office 365 Outlook customers impersonates Excel Online in an HTML attachment in order to trick users into entering their creden...

Read more

Report: Office 365 Hacked Using Google Open-Redirect Vulnerability

A new widespread phishing attack against Office 365 email customers uses Google's App-Engine website to redirect victims to download malicious files. Avanan security...

Read more

Attack Report: Office 365 Security Bypassed Using Hexadecimal Escape Characters

In several past blogs, we described how hackers bypass Office 365 Security with Punycode encoding, and then Unicode characters. In this attack report we discuss an a...

Read more

Attack Report: Office 365 Sharepoint from China

This attack report covers a massive attack on Office 365 users that leverages the trust Office 365 puts in its own links. 

Read more

Screen Shot 2017-08-02 at 11.28.08 AM

Attack Report: Unicode-Based Phishing

This is a large scale phishing attack against Office 365 that we have been seeing across the majority of our Office 365 customers. The attack takes advantage of Offi...

Read more

Attack Report: The Long-term Phish

“One question was what exactly were the hackers after? They had compromised at least one account, yet they still weren’t done. What was next? But the big question wa...

Read more

Blog Post2FWebinar Images (2).png

5 Phishing Attacks Office 365 and Gmail Didn't Detect in July

In the past 30 days, the Avanan platform has detected and blocked thousands of unique phishing attacks against our customers. The most interesting are those that byp...

Read more

450421681.jpg

Gmail Phishing Attack: How to Identify a Phishing Email in Gmail

Gmail Phishing is the most popular way for attackers to gain access to your Google Cloud. It can be difficult to keep up with all the methods for detecting phishing ...

Read more

Blog Post2FWebinar Images

Attack Report: How Google Drive Propagates Malware

This attack report covers a phishing attack against Gmail and Google Drive customers that leverages both services and exploits a blind spot in the G Suite service.

Read more

Untitled presentation (1).png

NHS Hit by International Ransomware Attack

May 12th, 2017 The NHS has been hit by a ransomware attack today, affecting at least 16 of their trusts in the UK according to The Guardian. This is a widespread att...

Read more

Untitled presentation-1.png

Jaff: New Ransomware Attack Blasting 5 Million Emails Per Hour

WannaCry infected over 200,000 computers in 150 countries. The large-scale ransomware attack infected a large number of global companies such as FedEx, LATAM airline...

Read more

google-doc-attack-authenticate.png

Attack Report: API-based Phishing Attack in Gmail

This attack report covers a very sophisticated phishing scheme that came in the form of an invitation to open a Google Doc.

Read more

why-not-mta-graphic.png

Why MTA Gateways are Not Effective SaaS Email Security Appliances

Don't change your email security. Change the way it is connected. With the massive adoption of Office 365 and G-Suite for corporate email, companies hoping to implem...

Read more

Zero-Trust Security: When Your Employees are the Source of the Attack

During our analysis of an advanced phishing attack last week, I was reminded why it is so important to scan every email—inbound, outbound and internal. 

Read more

weve-been-hacked-w.png

Attack Report: Google Redirect

Avanan recently received this email from the CISO of DEFENSCON, a think tank that works with some of the most sensitive government organizations and private defense ...

Read more

14-Day Free Trial – Experience the power and simplicity of Avanan Cloud Security.   Start Free Trial