<img alt="" src="https://secure.leadforensics.com/110471.png" style="display:none;">
Phishing-Attack-HR.png

Attack Report: Phishing Your HR Platform in the Cloud

Dylan Press | November 10, 2017 | Filed Under: Blog | Read More »

Avanan’s Security Analysts recently started tracking an increased number of attacks against cloud-based HR systems such as ADP, Workday, Zenefits and Justworks, to compromise HR ac...

Microsoft Advanced Threat Protection vs Avanan

Michael Landewe | November 3, 2017 | Filed Under: Blog | Read More »

Microsoft knows that Office 365's default security features are not enough to keep an organization protected, which is why they created Microsoft Advanced Threat Protection as an a...

VerizonDataBreachInvestigationsReport.png

Verizon's 2017 Data Breach Investigations Report: Malware and Phishing

Dylan Press | October 26, 2017 | Filed Under: Blog | Read More »

Earlier this month Verizon released their 10th annual Data Breach Investigations Report. The 76-page report covers the data breach trends across all industries—from Finance and Hea...

MicrosoftSafeLinksFeaturedImage.png

4 Reasons Microsoft "Safe Links" Make Office 365 Less Safe

Dylan Press | October 19, 2017 | Filed Under: Blog | Read More »

Since the first successful phishing attack, we have trained our email users to be suspicious of every URL before clicking. Microsoft’s Advanced Threat Protection (ATP) includes a f...

When Phishing Succeeds: The Alternate Inbox Method

Michael Landewe | October 16, 2017 | Filed Under: Blog | Read More »

Before you continue reading, you should check to see if your email address is one of millions that has already been compromised: HaveIBeenPwned.com. An attacker could have your acc...

Attack Report: Gmail Vulnerable to Nickname Impersonation Spearphishing

Michael Landewe | October 11, 2017 | Filed Under: Blog, Attack Report | Read More »

The Basics of the Nickname Email Spoof Attack We have trained our users to distrust a sender's nickname and validate an identity by looking at the original email address. Most emai...

Blog Post2FWebinar Images (36).png

Avanan Partner Series: How Lastline Detects Malware

Michael Landewe | October 11, 2017 | Filed Under: Blog | Read More »

With each day bringing new and different threats, we are always seeking out the next-gen technology that can defend against these next generation attacks. This is the first in our ...

Blog Post2FWebinar Images (35).png

Can a CASB Protect you from Phishing or Ransomware?

Michael Landewe | October 6, 2017 | Filed Under: Blog | Read More »

"Is Avanan a CASB?"   After joining a recent CASB panel with the Cloud Security Alliance I found myself answering this question over and over again. The answer depends upon whether...

Blog Post2FWebinar Images (34).png

What to Do After You Have Fallen Victim to a Phishing Attack

Yoav Nathaniel | September 28, 2017 | Filed Under: Blog | Read More »

Even if you could block 100% of malware and phishing, it is still possible to have a compromised account: a lost post-it note, a massive Linkedin-type password breach, a re-used pa...

Attack Report: Excel Phishing Attack that Bypasses Office 365

Yoav Nathaniel | September 19, 2017 | Filed Under: Blog, Attack Report | Read More »

This targeted phishing attack against Office 365 Outlook customers impersonates Excel Online in an HTML attachment in order to trick users into entering their credentials. Avanan s...

Attack Report: Office 365 Security Hacked Using Google Redirect

Yoav Nathaniel | September 14, 2017 | Filed Under: Blog, Attack Report | Read More »

A new widespread phishing attack against Office 365 email customers uses Google's App-Engine website to redirect victims to download malicious files. Avanan security analysts confi...

Blog Post2FWebinar Images (23).png

Part II: Why Proofpoint and Mimecast Can't Secure Office 365 and Gmail

Yoav Nathaniel | September 6, 2017 | Filed Under: Blog | Read More »

In part one of this series we explained why customers of Proofpoint and Mimecast might be susceptible to email attacks that other Office 365 and Gmail customers are not. (Read Part...

Attack Report: Office 365 Security Bypassed Using Hexadecimal Escape Characters

Yoav Nathaniel | August 24, 2017 | Filed Under: Blog, Attack Report | Read More »

In several past blogs, we described how hackers bypass Office 365 Security with Punycode encoding, and then Unicode characters. In this attack report we discuss an attack against O...

Attack Report: Office 365 Sharepoint from China

Dylan Press | August 24, 2017 | Filed Under: Blog, Attack Report | Read More »

This attack report covers a massive attack on Office 365 users that leverages the trust Office 365 puts in its own links. 

Part I: Why Proofpoint and Mimecast Can't Secure Office 365 and Gmail

Gil Friedrich | August 11, 2017 | Filed Under: Blog | Read More »

Proofpoint and Mimecast have been the best email security solutions for our legacy on-prem email platforms - Exchange, Lotus Notes, etc. But to use them for Office 365 or Gmail act...

preview1502189331557.png

How Avanan is Disrupting the Cloud Security Market

Michael Landewe | August 10, 2017 | Filed Under: Webinars | Read More »

The days of incomplete, single-silo vendors are gone. Disruptive, incompatible technologies are no longer the only choice.

Screen Shot 2017-08-02 at 11.28.08 AM-1.png

Attack Report: Unicode-Based Phishing

Yoav Nathaniel | August 2, 2017 | Filed Under: Blog, Attack Report | Read More »

This is a large scale phishing attack against Office 365 that we have been seeing across the majority of our Office 365 customers that takes advantage of Office 365's blindness to ...

Blog Post2FWebinar Images (5).png

Why Microsoft Cannot Stop Phishing and Ransomware

Michael Landewe | July 24, 2017 | Filed Under: Webinars | Read More »

Microsoft is struggling to stop phishing and ransomware in Office 365. Now there is a solution.

Attack Report: The Long-term Phish

Gil Friedrich | July 24, 2017 | Filed Under: Blog, Attack Report | Read More »

  “One question was what exactly were the hackers after? They had compromised at least one account, yet they still weren’t done. What was next? But the big question was - how to ge...

Blog Post2FWebinar Images (2).png

5 Phishing Attacks Office 365 and Gmail Didn't Detect in July

Dylan Press | July 19, 2017 | Filed Under: Blog | Read More »

In the past 30 days, the Avanan platform has detected and blocked thousands of unique phishing attacks against our customers. The most interesting are those that bypass the built-i...