Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How Many Emails Are Malicious? | Cloudflare Radar Reels Ep 2 - Email Security & Global Attack Trends

Jul 31, 2025 By Cloudflare In Cloudflare
Ever wondered how many emails in your inbox are actually malicious? Our Radar Display reveals the real numbers and global attack trends. Get the full picture and the details you need to stay ahead in today’s cyber threat landscape.
View Video
Trustwave

Boosting Your Microsoft Email Security with Trustwave's Managed Phishing Service

Jul 30, 2025 By Trustwave In Trustwave
It seems everyone loves phishing attacks. Trustwave's Ed Williams, Vice President of SpiderLabs, during a recent Trustwave webinar, discussed the ongoing threat posed by the increasingly sophisticated phishing incidents that remain the primary vector for initial access in cyberattacks. What Williams interestingly noted was that threat actors are not the only group using phishing to gain access to organizations.
Read Post
fidelis security

Breaking Down Credential Phishing Trends: How Can NDR Help?

Jul 30, 2025 By Fidelis Security In Fidelis Security
Cybercriminals have changed tactics. Credential phishing has overtaken ransomware as the most common way to breach enterprise networks. What started as amateur email scams is now an industrial operation with nation-state precision. Phishing campaigns today mimic real user behavior so well that even trained employees fall for fake login pages, social engineering calls, and credential traps. If attackers get credentials, they skip the noise and walk right through the digital front door.
Read Post
Cybersecurity Training For Teachers Is Key To Stopping Phishing In Schools

Cybersecurity Training For Teachers Is Key To Stopping Phishing In Schools

Jul 28, 2025 By SecuritySenses In SecuritySenses
Schools have become a prime target for cybercriminals, with phishing now the biggest threat. In fact, 89% of UK primary and secondary schools experienced a phishing attack last year, the Department for Science, Innovation & Technology reveals. 40% of higher education institutions also reported serious repercussions after phishing attacks, such as, data breaches or financial loss. So, what makes schools such attractive phishing targets? The answer lies in the fact that they often store a lot of sensitive data, but lack the IT resources to properly protect it. The good news is teachers do have the power to fight back against phishing.
Read Post
memcyco

What to Look for in a Phishing Site Detection and Takedown Solution

Jul 18, 2025 By Eyal Katz In Memcyco
With the average phishing campaign now harvesting its first set of credentials in under 15 minutes , the efficacy of a detection strategy is measured in seconds, not hours.. Relying on scanning and takedown or traditional threat intelligence feeds – that inherently lag behind real-time user engagement – is no longer a viable defense against even unsophisticated credential theft and account takeover (ATO) scams.
Read Post
knowbe4

Engineered To Evade: How Phishing Attacks Are Designed To Get Through Your Secure Email Gateway

Jul 16, 2025 By Bex Bailey In KnowBe4
Getting through secure email gateways (SEGs) is simply the cost of doing business for a cybercriminal. Literally, detection at the perimeter by a SEG is the same as falling at the first hurdle. SEGs have been adopted broadly, especially in larger organizations (although this picture has started to change in recent years - more on that below). Even where organizations don’t use a SEG, many native controls in email platforms (like Microsoft Exchange) operate using the same principles.
Read Post
Arctic Wolf

Arctic Wolf Observes Microsoft Direct Send Abuse

Jul 16, 2025 By Andres Ramos In Arctic Wolf
Arctic Wolf has recently observed a widespread phishing campaign targeting multiple organizations by abusing Microsoft 365’s Direct Send feature—a feature designed for internal email delivery without requiring authentication. Threat actors can identify valid domains and recipients, then send spoofed emails that appear to originate from internal domains—often impersonating the user themself—without needing credentials or access to the tenant.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.