IRONSCALES Blog

Jeff Rezabek
by Jeff Rezabek
on January 26, 2023

State and local government agencies store, utilize, and send massive amounts of sensitive information on a daily basis. When handling data such as personal and financial records and other significant ...

Themis
by Themis
on January 25, 2023

As we look ahead to 2023, it's clear that artificial intelligence (AI) will continue to shape the cybersecurity landscape, especially when it comes to phishing. Advancements in AI technology, such as ...

Themis
by Themis
on January 18, 2023

The CFO’s role in cybersecurity is often overlooked. Yet, they can be a vital partner with a CISO in risk management to protect the financial security of an organization and maximize return on ...

by Product Management Team
on January 12, 2023

With the v63.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

Jeff Rezabek
by Jeff Rezabek
on January 10, 2023

Phishing simulation campaigns are vital for businesses to test their employee's security awareness and ability to help protect against cyber threats. As cyber threats become more sophisticated and ...

Eyal Benishti
by Eyal Benishti
on January 06, 2023

The cybersecurity industry has been talking about collaborative approaches forever. In fact, the cyber community has been using a collaborative approach for a long time on things like the ...

by Product Management Team
on January 04, 2023

The 62.00.00 release of IRONSCALES includes several Simulation & Training, and Incident Management enhancements, as well as some bug fixes.

Jeff Rezabek
by Jeff Rezabek
on December 20, 2022

Phishing attacks are surging. As a result, threat actors are quickly evolving their tactics to bypass legacy systems and deceive vulnerable targets, causing IT and Security teams to spend more time ...

Eyal Benishti
by Eyal Benishti
on December 15, 2022

BEC, or Business Email Compromise, is a type of cybercrime that has become increasingly common in recent years. It involves hackers sending emails that appear to be from trusted sources, such as ...

by Product Management Team
on December 14, 2022

We just launched the following improvements and new features in the v61.00.00 release of IRONSCALES. 

Eyal Benishti
by Eyal Benishti
on December 13, 2022

This post was originally published on December 03, 2020, and has since been updated for relevancy and accuracy.  ‘Tis the season for cybercriminals to launch email phishing scams as they seek to take ...

Audian Paxson
by Audian Paxson
on December 08, 2022

Threat actors constantly tweak and refine their tactics in an attempt to evade detection or become more efficient at achieving malicious goals. Often, these tactical adjustments exploit societal ...

by Product Management Team
on November 30, 2022

We're pleased to announce the following improvements and new features included in the v60.00.00 release of IRONSCALES. Check them out below.

Jeff Rezabek
by Jeff Rezabek
on November 29, 2022

It’s well known that a good security strategy calls for layers of protection to thwart bad actors from quickly accessing sensitive data. While many organizations have a secure email gateway deployed ...

Eyal Benishti
by Eyal Benishti
on November 17, 2022

Sometimes I hear the following from security professionals when we talk about their awareness program:

Jeff Rezabek
by Jeff Rezabek
on November 17, 2022

Cybercriminals have relied on phishing emails as a gateway to gaining access to sensitive information since the beginning of email. And reports indicate that this isn’t slowing down. For threat ...

Audian Paxson
by Audian Paxson
on November 10, 2022

Earlier this year, we launched IRONSCALES™ Starter™, our free email security software solution. And since then, it has become a very popular option with IT security admins who need to deliver ...

Jeff Rezabek
by Jeff Rezabek
on November 10, 2022

Secure Email Gateways (SEG)s have been a staple in many organizations’ strategies to curb email phishing and spam messages from disrupting business and targeting employees. They’ve become so ...

Audian Paxson
by Audian Paxson
on November 09, 2022

Almost every business or organization is a target for account takeover (ATO) attempts. There’s a good chance that your organization is vulnerable.

Ian Thomas
by Ian Thomas
on November 08, 2022

We recently published a report named “The Business Cost of Phishing” that provides insights into the challenges faced by IT and Security teams in their fight against this highly prevalent type of ...

Eyal Benishti
by Eyal Benishti
on November 08, 2022

For good and bad, AI is now more accessible and used for things from writing articles to identifying phishing threats. For anti-phishing, AI accessibility is beneficial for building better cyber ...

by Product Management Team
on November 03, 2022

With the v59.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

David Vuijsje
by David Vuijsje
on October 27, 2022

It may be wrong to admit, but I love a good con. It is the art of deception that fascinates me the most. Watching a con artist at work is enthralling and fills me with a mix of surprise at their ...

Eyal Benishti
by Eyal Benishti
on October 19, 2022

Defense in depth is a common practice in both the physical and the cyber security realms. We create multiple layers to complement each other; each layer assumes its predecessor failed.

Eyal Benishti
by Eyal Benishti
on October 12, 2022

The Artificial Intelligence (AI) vs. Human Intelligence (HI) debate has been discussed a lot in the past few years. There is no doubt that AI can outperform humans in specific areas and even beat the ...

Themis
by Themis
on October 11, 2022

The 2022 Uber Breach: Social Engineering and the Lapsus$ Gang A cyber-attack on ride-hailing company Uber made global media headlines in September 2022 when a threat actor infiltrated the company’s ...

by Product Management Team
on October 06, 2022

With the v58.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features.

Jeff Rezabek
by Jeff Rezabek
on September 23, 2022

Cybersecurity Awareness month is right around the corner. As such, you may be assessing your business’s risk profile to identify weaknesses and targets. With phishing attacks being a leading cause of ...

by Product Management Team
on September 22, 2022

With the v57.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features.

Tyler Swinehart
by Tyler Swinehart
on September 20, 2022

URL Rewriting, a service used to sandbox and defang malicious URLs by sending users to a portal that displays the URL in the sandboxed environment, has many well-known weaknesses and a few that may ...

Ian Thomas
by Ian Thomas
on September 15, 2022

In 2022, a large-scale phishing campaign successfully compromised IT resources at over 130 organizations, many of which were high-profile companies. Code-named 0ktapus, the threat group behind this ...

Audian Paxson
by Audian Paxson
on September 14, 2022

A researcher at IRONSCALES recently discovered thousands of business email credentials stored on multiple web servers used by attackers to host spoofed Microsoft Office 365 login pages. The ...

Themis
by Themis
on September 08, 2022

Account takeover (ATO) attacks involve threat actors gaining access to and control over legitimate user accounts. After taking control of a user’s account, the malicious actor then uses the account’s ...

by Product Management Team
on September 08, 2022

With the v56.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features.

Ian Thomas
by Ian Thomas
on September 01, 2022

Evil Corp is a cybercrime gang notorious for its prolific malware-based hacking schemes leading to payments exceeding $100 million from various financial institutions and other businesses. The ...

Jeff Rezabek
by Jeff Rezabek
on August 26, 2022

When it comes to email security, no amount of technology can completely stop the threat of phishing attacks. As the threat landscape evolves and cybercriminals identify new methods to breakthrough ...

Eyal Benishti
by Eyal Benishti
on August 17, 2022

Cyber security is a tough challenge, and it's getting harder to keep up with the latest threats. AI-powered tools leveraging machine learning can help detect phishing attacks by analyzing huge ...

by Kaylyn Beverly
on August 15, 2022

For organizations dealing with phishing attacks, it may seem like an easy solution to stopping the attacks is just to block the attacker. Turns out that isn’t the case. Let’s look at why this ...

David Vuijsje
by David Vuijsje
on August 11, 2022

Every family has its IT guy, ours is Raphael and he is great at it. Embracing this position within the family he married into, Raph faithfully keeps us updated on WhatsApp with interesting articles ...

by Product Management Team
on August 10, 2022

With the v55.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

Themis
by Themis
on August 09, 2022

Many people don’t know that IRONSCALES started as a Security Awareness Training company. While working as a security researcher at a technology company, Eyal Benishti (our founder & CEO) had a ...

by Alex Paquette and Landon Saunders
on August 03, 2022

At IRONSCALES we work hard every day to provide our customers with the very best experience possible, the foundation of which is our amazing Customer Success team. As a data-driven organization, we ...

Ian Thomas
by Ian Thomas
on August 02, 2022

While several high-profile ransomware gangs saw a steep rise and an equally sharp decline over the last couple of years, Cuba ransomware somewhat slipped under the radar. With the gang behind Cuba ...

by Product Management Team
on July 26, 2022

With the v54.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features.

Ian Thomas
by Ian Thomas
on July 21, 2022

The email security market is full of vendors offering a wide array of features and capabilities. To make sense of the chaos and to bring clarity to companies seeking the right solution for their ...

Russell McGuire
by Russell McGuire
on July 19, 2022

It has been six weeks since I joined IRONSCALES, and WOW...what a ride!

Ian Thomas
by Ian Thomas
on July 12, 2022

Cryptocurrency is a digital medium of exchange that is not associated with traditional currency-issuing institutions like national banks. Instead, cryptocurrency is managed using blockchain ...

by Product Management Team
on July 11, 2022

With the v53.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features.

Ian Thomas
by Ian Thomas
on July 07, 2022

After a cull that saw several high-profile ransomware gangs disbanded in late 2021 a new set of groups emerged in their place. One gang with a particularly rapid rise over the last few months in ...

Audian Paxson
by Audian Paxson
on July 01, 2022

OpenSea, the largest non-fungible token (NFT) marketplace, disclosed a breach on their blog on June 29, stating that an employee of Customer.io, their email delivery vendor “misused their employee ...

Ian Thomas
by Ian Thomas
on June 30, 2022

What Is Smishing? Smishing is a type of social engineering scam that uses mobile texting rather than emails to deliver nefarious messages that dupe people into taking specific actions. The term is a ...

by Product Management Team
on June 27, 2022

With the v52.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

Ian Thomas
by Ian Thomas
on June 14, 2022

What is Business Email Compromise? Business email compromise (BEC) is a type of targeted phishing (spear phishing) in which a threat actor either accesses or mimics a genuine business email account ...

Ian Thomas
by Ian Thomas
on June 14, 2022

EMOTET malware is a banking trojan that was initially spotted in 2014, disappeared for a while, and then reappeared in 2018. EMOTET is typically spread through phishing emails with malicious ...

by Avi Kassuto
on June 01, 2022

The World Cup Ticketing Scam If you're one of the estimated 3 million football/soccer fans looking to buy tickets to this year’s FIFA World Cup, beware of fake emails like the one below. There have ...

by Product Management Team
on May 29, 2022

With the v51.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

by Product Management Team
on May 09, 2022

With the v50.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

Ian Thomas
by Ian Thomas
on April 29, 2022

Higher education institutions are prime targets for ransomware attacks. Universities and colleges handle large amounts of sensitive personal data, facilitate a campus-wide intranet, and manage ...

IRONSCALES
by IRONSCALES
on April 11, 2022

With the v49.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

by Azfar Makani
on April 05, 2022

Collaboration tools like Microsoft Teams are now a big part of everyday working life – we use these tools constantly to communicate with employees across our organization. Here are just a few data ...

David Vuijsje
by David Vuijsje
on April 04, 2022

I was first exposed to the idea of micro-expressions by Lie to Me, a crime series inspired by the work of Paul Ekman, professor emeritus at UCSF and advisor to law enforcement. By analyzing ...

Ian Thomas
by Ian Thomas
on April 01, 2022

The ongoing conflict between Russia and Ukraine poses cyber threats that extend beyond Ukraine’s borders across the entire EMEA region. Cyber attacks are a significant part of Russia’s military ...

IRONSCALES
by IRONSCALES
on March 28, 2022

With the v48.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

Eyal Benishti
by Eyal Benishti
on March 25, 2022

Phishing remains the leading cause of ransomware attacks and shows no signs of slowing down. Leading MSPs around the globe recognize this issue and are constantly on the lookout for email security ...

Audian Paxson
by Audian Paxson
on March 15, 2022

One of the exciting updates included in our recent Megalaunch announcement was enhanced account takeover (ATO) detection and remediation. Before we highlight the updates, let’s do a quick overview of ...

IRONSCALES
by IRONSCALES
on March 09, 2022

With our v47.00 release, we are excited to roll out our new Email Protect™ and Complete Protect™ plans. These new plans better align with IRONSCALES’ goal of being a comprehensive messaging security ...

Eyal Benishti
by Eyal Benishti
on March 01, 2022

We are excited to share the news that our biggest launch ever at IRONSCALES, which we’re calling Megalaunch, is here!  With this launch, we are rolling out new packages, introducing new capabilities, ...

IRONSCALES
by IRONSCALES
on February 28, 2022

With the v46.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features: 

Themis
by Themis
on February 25, 2022

Being prepared for the latest email security and phishing threats requires anticipating what’s on the horizon over the next year or so. Part one of this series of predictions covered the possible ...

Themis
by Themis
on February 16, 2022

In the dynamic world of cybersecurity, things change quickly and often—email security and phishing are no exceptions. Each 12-month period sees a range of new tactics, tools, and methods employed by ...

Or Malzman
by Or Malzman
on February 08, 2022

Analysis of Microsoft O365 Credential Phishing with Employee Manual Updates Attack Summary Details  Impacted IRONSCALES customer mailboxes: 506  Impacted IRONSCALES customers: 269  Security Bypass: ...

Ian Thomas
by Ian Thomas
on February 02, 2022

International law enforcement collaboration led to the disbandment of several high-profile ransomware gangs in the last 12 months. As ransomware attacks gained more media coverage and wreaked more ...

IRONSCALES
by IRONSCALES
on January 31, 2022

With the v44.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features:

Ian Thomas
by Ian Thomas
on January 27, 2022

Ransomware attacks continue to be a problem for companies around the world. As these attacks surge, many high-profile incidents have made headlines across Africa. This article highlights some of the ...

Ian Thomas
by Ian Thomas
on January 25, 2022

FIN7 is a unique group in the shady world of cybercrime. Infamous for sophisticated stolen credit and debit card hacks involving phishing emails and other social engineering methods, the gang’s ...

Ian Thomas
by Ian Thomas
on January 18, 2022

Netwalker is a notorious name on the ransomware scene with a prolific record of successful attacks. An estimated $25 million in ransom extortions between March and September 2020 established the gang ...

J Stephen Kowski
by J Stephen Kowski
on January 14, 2022

Separating Fact from Fiction “Yeah, I get it, but I just don't trust users; they always screw everything up,” lamented the Director of IT, while on a recent sales call featuring our dynamic ...

Ian Thomas
by Ian Thomas
on January 04, 2022

2021 was a big year for cybersecurity — and not in a good way.

IRONSCALES
by IRONSCALES
on January 03, 2022

With the v43.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features: 

Alex Paquette
by Alex Paquette
on December 21, 2021

As we approach the end of the year, IRONSCALES would like to say THANK YOU to each and every one of our customers. Together, we are paving the best-in-class, modern approach to email security. Your ...

Ian Thomas
by Ian Thomas
on December 10, 2021

Ragnarok is a ransomware gang known for the Ragnar Locker ransomware, which has impacted a range of high-profile organizations from video game developers to energy companies. This article looks at ...

Eyal Benishti
by Eyal Benishti
on December 07, 2021

I am excited to announce our Series C investment of $64M, led by PSG, a leading growth equity firm partnering with software and technology-enabled service companies, with participation from existing ...

IRONSCALES
by IRONSCALES
on December 06, 2021

With the v42.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features: 

Ian Thomas
by Ian Thomas
on December 03, 2021

Babuk is a new ransomware gang that emerged in early 2021. The gang’s initial mission statement referenced a non-malicious intent to conduct ransomware attacks as an apparent audit of the security of ...

Ian Thomas
by Ian Thomas
on November 17, 2021

DoppelPaymer is a ransomware gang that extracts data from victims’ systems and then encrypts those same systems. Named after the strain of ransomware that the gang deploys, DoppelPaymer has ...

Or Malzman
by Or Malzman
on November 14, 2021

Hackers can use their abilities to do good, to do bad and sometimes just to show what they can do. The last option was the case for this scenario. 

Ian Thomas
by Ian Thomas
on November 09, 2021

Egregor is a ransomware-as-a-service gang that has so far managed to claim at least 70 victims and extort tens of millions of dollars during a prolific yet short spell of operations. The Egregor ...

IRONSCALES
by IRONSCALES
on November 08, 2021

With the v41.00.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features: 

Ian Thomas
by Ian Thomas
on November 02, 2021

Clop is a ransomware gang that first appeared in February 2019 when security researchers found new ransomware strains with the .Cl0p extension. A spate of prolific and high-profile attacks within a ...

Ian Thomas
by Ian Thomas
on October 27, 2021

DarkSide is a ransomware gang that quickly made waves in the cybersecurity world with a range of high-profile attacks. After first notifying the world of their operations in an August 2020 dark web ...

Ian Thomas
by Ian Thomas
on October 20, 2021

With the v39.00.01 release of IRONSCALES, we are pleased to announce product improvements and new features.

Ian Thomas
by Ian Thomas
on October 20, 2021

Secure Email Gateways (SEGs) have been around for two decades. They were built to provide security for on-premises email deployments and were placed at the perimeter of a company’s security ...

Ian Thomas
by Ian Thomas
on October 19, 2021

Conti is a ransomware gang that has managed to wreak havoc on many organizations within just a short time. After first appearing in media headlines as recently as 2019, Conti has been behind several ...

Ian Thomas
by Ian Thomas
on October 15, 2021

Email Phishing is Biggest Security Threat To Businesses, According to IT Professionals

Eyal Benishti
by Eyal Benishti
on October 14, 2021

Fostering channel partnerships with reputable value-added resellers (VARs) has become an important component of most cybersecurity companies go-to-market strategies. Challenged by what seems like ...

Noah Gordon
by Noah Gordon
on October 14, 2021

Background The IRONSCALES research team has recently identified a social engineering phishing scam that leverages confusion and disinformation about people and corporate COVID vaccine requirements to ...

Eyal Benishti
by Eyal Benishti
on October 13, 2021

Google’s Gmail for Business has had an overhaul and now claims to offer AI-powered security features. According to its marketing materials, it will now offer advanced protection against phishing and ...

Ian Thomas
by Ian Thomas
on October 13, 2021

REvil is a notorious ransomware gang responsible for multiple high-profile cyber attacks targeting companies of all sizes. This article explores REvil’s origins, the types of malware payloads used by ...

Ian Thomas
by Ian Thomas
on October 12, 2021

“Rollin' in my 5.0. With my rag-top down so my hair can blow.”

IRONSCALES
by IRONSCALES
on October 11, 2021

With the v40.00 release of IRONSCALES, we are pleased to announce the following product improvements and new features: 

Ian Thomas
by Ian Thomas
on October 05, 2021

Ransomware in Pharmaceutical Overview The pharmaceutical industry is comprised of public and private organizations focused on the research, development and manufacturing of drugs and medication. The ...

J Stephen Kowski
by J Stephen Kowski
on September 23, 2021

“I know I hear you talk about this all the time, but what is ransomware exactly?” my wife asked as we watched the evening news. Apart from being a great question, it’s one that a lot of folks have ...

Ian Thomas
by Ian Thomas
on September 22, 2021

Meeting the demands of modern digital-oriented customers has resulted in widespread digital transformation initiatives in the financial services industry. The new digital ecosystem harnesses ...

Ian Thomas
by Ian Thomas
on September 21, 2021

The mining industry encompasses organizations focused on the exploration for and extraction of valuable minerals and other elements from the Earth. Given the critical need to provide these minerals ...

Ian Thomas
by Ian Thomas
on September 21, 2021

From cloud backup to consulting to managed detection and response, businesses of all sizes leverage a number of IT services. These services add value to organizations through cost-effective ...

Ian Thomas
by Ian Thomas
on September 20, 2021

The agriculture industry spans a diverse range of businesses from growing crops, raising animals, and harvesting fish and other animals from a farm, ranch, or their natural habitats. Given the ...

Ian Thomas
by Ian Thomas
on September 17, 2021

Phishing remains the leading cause of ransomware attacks and shows no signs of slowing down. Leading MSPs around the globe recognize this issue and are constantly on the lookout for email security ...

Ian Thomas
by Ian Thomas
on September 14, 2021

The media and entertainment industry spans a diverse range of businesses from newspaper publishers to television broadcasters. Common to most business models within media and entertainment is a high ...

Ian Thomas
by Ian Thomas
on September 03, 2021

Telecommunications providers keep the world connected through phone calls, emails, the Internet, and television. It’s easy to take telecommunications services for granted until they suffer ...

Ian Thomas
by Ian Thomas
on September 02, 2021

Ransomware attacks pose serious cybersecurity risks for companies in the hospitality industry, which is a broad sector that includes hotels, tourism agencies, restaurants, and bars. Common to these ...

IRONSCALES
by IRONSCALES
on September 01, 2021

With the v38.00 release of IRONSCALES, we are pleased to announce product improvements and new features. Some of the release highlights include improved visibility to the recipients of a phishing ...

Ian Thomas
by Ian Thomas
on August 20, 2021

Ransomware attacks pose serious cybersecurity risks for retailers. If an attack manages to disrupt customer-facing operations during peak business periods, it could have a disastrous effect on a ...

Ian Thomas
by Ian Thomas
on August 12, 2021

Businesses in the energy sector produce, extract, sell, and supply various sources of energy. These energy sources include oil and gas reserves, nuclear energy, and renewable energy for fuel and to ...

Noah Gordon
by Noah Gordon
on August 11, 2021

Attack Summary Attack Description: FileShare Platform Credential Theft Impacted Mailboxes: 210 Number of Impacted Customers: 42 Security Bypass: SPF, DMARC, Third-Party Visual Scanners Payload: ...

Or Malzman
by Or Malzman
on August 05, 2021

Background The IRONSCALES research team has recently noticed an alarming increase in the exploitation of legitimate file sharing services to deliver phishing attacks. Specifically, we are seeing ...

IRONSCALES
by IRONSCALES
on August 03, 2021

Office 365 Mailbox Sync Enhancement The IRONSCALES automatic mailbox sync for Microsoft Office 365 was recently enhanced. Unlicensed Office365 mailboxes that cannot be protected will not sync to ...

Ian Thomas
by Ian Thomas
on July 29, 2021

Transportation companies provide critical functions in shipping products and carrying people to their destinations. Encompassing both transport and logistics companies, the transportation sector is ...

IRONSCALES
by IRONSCALES
on July 29, 2021

Enhanced Account Takeover (ATO) Protection (for O365 users only) ATO is a type of identity theft in which a cyber-criminal gains unauthorized access to a legitimate user’s online account. Once the ...

Ian Thomas
by Ian Thomas
on July 22, 2021

Organizations in the Legal industry, such as law firms, rely on IT for many of their critical operations. The very nature of this industry makes them prime candidates for ransomware attacks. Law ...

Or Malzman
by Or Malzman
on July 21, 2021

Background CLOP is a notorious high-profile ransomware group that has compromised industries globally. Like other ransomware groups, CLOP hosts a leak site to pressure their victims into paying the ...

Ian Thomas
by Ian Thomas
on July 19, 2021

Disrupting operations at manufacturing plants is a potentially lucrative path for threat actors specializing in ransomware. This article discusses the current state of ransomware in the manufacturing ...

Or Malzman
by Or Malzman
on July 15, 2021

Background eFax is an online service that allows users to send and receive faxes directly via email. Cyber criminals are known to target services like eFax that leverage the user’s inbox to hide ...

J Stephen Kowski
by J Stephen Kowski
on July 14, 2021

The annual Verizon Data Breach Investigations Report (DBIR) provides analysis of information security incidents, with a specific focus on data breaches, which it defines as an incident that results ...

Ian Thomas
by Ian Thomas
on July 08, 2021

The sensitive nature of information gathered about patients makes healthcare organizations particularly vulnerable to ransomware attacks. Seeking a large payday, opportunistic hacking groups target ...

David Habusha
by David Habusha
on July 07, 2021

This week I joined IRONSCALES as the SVP of Product Management. Given my background in cybersecurity and enterprise software, I always thought of email security and phishing as a problem that was ...

Ian Thomas
by Ian Thomas
on June 24, 2021

Countries in East and Southeast Asia have been targeted with multiple high-profile ransomware attacks over the last 18 months. The attacks have hit companies of all sizes across a disparate range of ...

Noah Gordon
by Noah Gordon
on June 21, 2021

Introduction The cryptocurrency market has grown exponentially in recent years, with the total market capitalization of cryptocurrencies surpassing $200 billion. This rapid growth has caught the ...

J Stephen Kowski
by J Stephen Kowski
on June 20, 2021

At its core, your email security team has one simple goal: protect company emails from compromise. The solution they choose to meet that end often involves a patchwork of monitoring, data collection, ...

Ian Thomas
by Ian Thomas
on June 17, 2021

Being geographically quite isolated from the rest of the world does not mean anything when it comes to avoiding the widespread threat of ransomware. Operations at organizations across Australia and ...

Noah Gordon
by Noah Gordon
on June 16, 2021

Background The cryptocurrency market has been around for many years but gained a significant amount of interest during the pandemic. Naturally, the criminals followed, as they are always on the ...

Julia Blachman
by Julia Blachman
on June 16, 2021

I just joined IRONSCALES two weeks ago. Yes, you read that correctly: I have only been here for a few days and am already writing a blog about the inclusive workplace! Why? Because I get to be an ...

Ian Thomas
by Ian Thomas
on June 14, 2021

Vast wealth from natural resources, dynamic regional politics and a significant investment in technology have resulted in the Middle East becoming a fertile ground for ransomware and other types of ...

Eyal Benishti
by Eyal Benishti
on June 11, 2021

Malicious cyber activity goes far beyond email security, with some estimates putting the cost to the U.S. economy between $57 billion and $109 billion in 2016 alone. The potential impact on the ...

Ian Thomas
by Ian Thomas
on June 09, 2021

Composed of South America, Mexico, Central America, and some Caribbean islands, Latin America is a large geographic area with a flourishing IT sector. Improved English proficiency, educational ...

IRONSCALES
by IRONSCALES
on June 08, 2021

We wanted to share a few key details about our latest release, which is now available.

Noah Gordon
by Noah Gordon
on June 06, 2021

The pandemic has reshaped the world in many ways, from how we work and how we shop. As their workforces went remote, companies rushed to move their applications to the cloud. As lockdowns forced ...

Alex Paquette
by Alex Paquette
on June 06, 2021

Many organizations love the comfort that comes with Secure Email Gateways (SEGs) rewriting URLs contained within an email, otherwise known as “safe links”. But is this perceived comfort actually ...

Ian Thomas
by Ian Thomas
on June 03, 2021

The IT sector in India continues to experience strong growth, powered by digital transformation initiatives across all industries. As a result, many Indian companies recognize the need to invest in ...

Ian Thomas
by Ian Thomas
on May 27, 2021

Cyber attacks targeting countries like the UK, United States, and Australia tend to receive the majority of media attention. However, large swaths of attacks continue to hit other parts of the world, ...

IRONSCALES
by IRONSCALES
on May 25, 2021

2021 has proven to be an exciting year for us at IRONSCALES! We continue to work hard every single day to provide our customers with the best email security solution on the market. While our focus ...

IRONSCALES
by IRONSCALES
on May 25, 2021

Earlier this month we announced that we were relaunching our Channel Partner Program with enhanced benefits. As part of the refresh, we refined our tiering structure to feature platinum, gold, ...

Ian Thomas
by Ian Thomas
on May 19, 2021

Ransomware attacks continue to wreak havoc on the IT systems of organizations, enterprises, small businesses, and even government services around the world. A rapid and unexpected shift to ...

Eyal Benishti
by Eyal Benishti
on May 13, 2021

If you’re concerned that your security team may be suffering from fatigue, lacking motivation, or feeling overwhelmed… you’re not wrong. The industry is facing a dearth of qualified cybersecurity ...

IRONSCALES
by IRONSCALES
on May 12, 2021

We want to share a few key details about our latest release, which is now available.

Eyal Benishti
by Eyal Benishti
on April 28, 2021

Email remains the most significant cyber security threat companies face today, which is reflected in a burst of recent M&A activity in this space. Both email security and related security ...

Noah Gordon
by Noah Gordon
on April 23, 2021

Background Cybercriminals continue to innovate their attack methods. IRONSCALES recently identified a specific attack that affected over 40 of our customers. In this instance, attackers impersonated ...

Noah Gordon
by Noah Gordon
on April 22, 2021

Background With several new two-dose COVID 19 vaccines being approved in the US by the FDA (from the companies Pfizer and Moderna), there was a rush of activity at multiple levels of government to ...

Eyal Benishti
by Eyal Benishti
on April 20, 2021

Fifteen months ago, we all had a lot to learn. At that time, most of us had only scant details of a new virus, which had probably originated in China, and was apparently both more contagious and ...

IRONSCALES
by IRONSCALES
on April 13, 2021

We wanted to share a few key details about our latest release, which is now available. Quarantined Email Daily Digest In order to provide better visibility to end users regarding emails that were ...

J Stephen Kowski
by J Stephen Kowski
on April 12, 2021

Security Terms Explained: A Primer on Polymorphism During a recent client presentation, a member of our sales team (no doubt caught up in the excitement common to security professionals) used the ...

Noah Gordon
by Noah Gordon
on March 22, 2021

Background UPDATE as of 3/31

Eyal Benishti
by Eyal Benishti
on March 19, 2021

Protect Yourself and Your Clients From Targeted Email Attacks Among the countless ways humans communicate, email remains one of the most popular. Embraced by individuals, businesses, academia, ...

IRONSCALES
by IRONSCALES
on March 19, 2021

We wanted to share a few key details about our latest release, which is now available.

Noah Gordon
by Noah Gordon
on March 17, 2021

Background Cybercriminals continue to innovate their attack methods. IRONSCALES recently identified a specific attack that affected over 90 of our customers. Specifically, the attackers tried to ...

Ian Thomas
by Ian Thomas
on March 12, 2021

Relief is here On Thursday, March 11, 2021, the President signed into law what is officially known as the American Rescue Plan (also known informally as the COVID relief bill.) This $1.9 TRILLION ...

Eyal Benishti
by Eyal Benishti
on March 11, 2021

In this email security blog series, we’ve examined the most common phishing tactics (Part 3), the techniques most commonly leveraged by threat actors (Part 2), and the many puzzle pieces found in ...

Eyal Benishti
by Eyal Benishti
on March 09, 2021

So what exactly is going on? By now you’ve probably heard about the latest major cyber attack, named Hafnium. According to Microsoft, this is an attack by what appears to be a state-sponsored ...

IRONSCALES
by IRONSCALES
on March 07, 2021

IRONSCALES product release v35.01 brings the following new functionality to our customers.

Eyal Benishti
by Eyal Benishti
on March 05, 2021

It was just about one year ago when offices around the world began shuttering, their occupants migrating from conference rooms and cubicles to home office spaces, dining tables, or whatever spot was ...

Eyal Benishti
by Eyal Benishti
on March 05, 2021

A half-century has passed since the first electronic messages were sent via connected ARPANET computers. It was roughly a decade later than we began calling these transmissions “email.” In the ...

Eyal Benishti
by Eyal Benishti
on March 01, 2021

In the previous post of this four-part series on the email security ecosystem, we highlighted both legacy and trending phishing techniques, such as business email compromise (BEC), spoofing, ...

Eyal Benishti
by Eyal Benishti
on February 21, 2021

In the first blog post in this four part series, we explored the ten most common email phishing tactics and what makes each of them unique and challenging threats. For part two, we explore both ...

Eyal Benishti
by Eyal Benishti
on February 15, 2021

As the email phishing threat landscape continues to rapidly evolve, understanding the totality of the email security and anti-phishing universe can be difficult for even the savviest of enterprise ...

Noah Gordon
by Noah Gordon
on January 25, 2021

In July 2020, threat actors preyed on pandemic-driven financial distress by launching a series of stimulus-related phishing attacks. As talks continue in DC to expand the stimulus, IRONSCALES ...

Eyal Benishti
by Eyal Benishti
on January 16, 2021

As we say a not so fond farewell to 2020, it’s a good time to take a reflective look on what this past year brought to the world of email security. Verizon told us last May that 70% of all phishing ...

Eyal Benishti
by Eyal Benishti
on January 01, 2021

In part two of this blog series, we explored the interdependencies of SPF, DKIM and DMARC; the limitations and vulnerabilities of each and addressed some of the unintended consequences of DMARC ...

Eyal Benishti
by Eyal Benishti
on December 29, 2020

In our last blog post we discussed the hype around Domain-based Message Authentication, Reporting & Conformance (DMARC), the upcoming deadline for compliance to DHS’ Binding Operational Directive ...

Eyal Benishti
by Eyal Benishti
on December 23, 2020

We’ve previously written a lot about DMARC, and despite the protocol having been in existence since 2011, it really did not enter into the spotlight as a mainstream email security solution until DHS ...

Eyal Benishti
by Eyal Benishti
on December 15, 2020

A few years ago, I wrote in Dark Reading around the limitations of phishing education. What I was trying to emphasize in the article was that employees can be an organization’s weakest link - or its ...

Eyal Benishti
by Eyal Benishti
on December 14, 2020

The fight to secure your organization grows more complex daily and the attack surfaces continue to expand. It is well known that email, and specifically phishing, remains among the most effective ...

Lomy Ovadia
by Lomy Ovadia
on December 07, 2020

The 200 million Microsoft Office 365 (O365) users worldwide are now being targeted by a new global spear-phishing attack spoofing Microsoft.com. Two weeks ago, IRONSCALES researchers first identified ...

Eyal Benishti
by Eyal Benishti
on November 16, 2020

Earlier this year, FireEye reported that 86% of phishing attacks observed in Q2 did not contain malware. Subsequently, the annual Verizon Data Breach and Incident Response (DBIR) report concluded ...

Eyal Benishti
by Eyal Benishti
on October 29, 2020

Nonprofit organizations are the lifeline of many local communities, helping to meet important societal needs that are often under-addressed by the government and the private sector. While nonprofits ...

Eyal Benishti
by Eyal Benishti
on October 19, 2020

Cybercriminals have always attempted to exploit current events. This year, we’ve seen attempts to leverage COVID-19, Amazon Prime Day and even the new iPhone announcement to dupe recipients.

IRONSCALES
by IRONSCALES
on October 07, 2020

Following the outbreak of COVID-19, cyber criminals’ efforts to penetrate security defenses have only become more pronounced and aggressive, such as targeting remote voicemails and weak internet ...

Eyal Benishti
by Eyal Benishti
on October 01, 2020

We’ve spent a lot of time in the past year educating the market about what a modern, self-learning email security platform consists of. From post-email delivery protection and decentralized ...

Eyal Benishti
by Eyal Benishti
on September 15, 2020

Today is a special and historic day for the entire world. For the first time since October 1994, Israel will normalize relations with two of its Middle East neighbors by signing a peace agreement ...

Eyal Benishti
by Eyal Benishti
on September 09, 2020

Labor Day is unofficially known as the start of election season in the United States. While, of course, the cycle has seemed to be in full swing for over a year, now is the time when elections have ...

Eyal Benishti
by Eyal Benishti
on August 24, 2020

If you follow our blog, then you may have read one of our many articles this year about the growing cyber threat of fake login pages. These nefarious yet often highly realistic-looking pages are now ...

Eyal Benishti
by Eyal Benishti
on July 22, 2020

IRONSCALES researchers have identified a trending fake login attack spoofing two leading email delivery service providers, Mailgun and SendGrid. This phishing attack was discovered just weeks after ...

Eyal Benishti
by Eyal Benishti
on July 22, 2020

A recent report from Gartner showed worldwide IT spending is expected to reach $3.5 trillion this year, a 7.3% drop from 2019 due to COVID-19 – and yet it’s more important than ever for companies to ...

Eyal Benishti
by Eyal Benishti
on June 25, 2020

In a 2019 survey, 451 Research discovered that 46% of individuals believe that email is the number one data security threat to their organizations. This isn’t surprising – the reality is that 91% of ...

Eyal Benishti
by Eyal Benishti
on June 10, 2020

Phishing attacks are rapidly morphing at scale: a Google report shows a 350% increase since quarantine. As such, many organizations are reviewing their email security stacks to determine what’s ...

Eyal Benishti
by Eyal Benishti
on June 04, 2020

With workforces largely remaining partially or fully remote, employees continue to rely on tools for greater efficiency and productivity. While we all know that software like Slack and Zoom have ...

Eyal Benishti
by Eyal Benishti
on May 27, 2020

Combine Machine Learning With Human Intelligence To Fight Phishing Attacks Email phishing attacks pose a constant challenge to organizations and their users perhaps today more than ever. The days of ...

Lomy Ovadia
by Lomy Ovadia
on May 20, 2020

Stop me if you’ve heard this before: Phishing threats are constantly morphing at scale and the vast majority of businesses simply don’t have the time, money and resources to investigate each and ...

Eyal Benishti
by Eyal Benishti
on May 13, 2020

Over the past few years, you’d be hard pressed to find an enterprise that wasn’t increasing their cybersecurity budget on an annual basis. In fact, Statista estimates that the global cybersecurity ...

Eyal Benishti
by Eyal Benishti
on May 07, 2020

As businesses continue to deal with the impact of coronavirus and COVID-19, they face another unfortunate reality: Phishing scammers are working overtime to take advantage of the situation. We’ve ...

Lomy Ovadia
by Lomy Ovadia
on April 30, 2020

What will “normal” look like when people around the world start returning to the office? There are some examples from those areas of the world that are ahead of the United States on the curve, but it ...

Eyal Benishti
by Eyal Benishti
on April 02, 2020

The proliferation of email phishing attacks on businesses has increased exponentially given the advanced techniques and technologies that attackers have adopted to infiltrate inboxes. These attacks, ...

Eyal Benishti
by Eyal Benishti
on March 26, 2020

A couple of days ago I had a phone conversation with a fellow security practitioner. We were exchanging thoughts regarding the new norm whereby both our companies were forced into a new ...

Eyal Benishti
by Eyal Benishti
on March 10, 2020

If you live and breathe info security, you’re undoubtedly familiar with the many sobering statistics that chronicle the persistent challenges of email security and phishing attacks:

IRONSCALES
by IRONSCALES
on February 20, 2020

Cyberattackers are taking advantage of today’s fast-paced, connected world, where it’s not unusual for essential requests and transactions to be made over email. Unfortunately, with the help of their ...

IRONSCALES
by IRONSCALES
on January 20, 2020

With the proliferation of advanced email attacks, such as business email compromise (BEC), credential theft and polymorphic phishing attacks, email security has become a critical concern for ...

Eyal Benishti
by Eyal Benishti
on January 13, 2020

Phishing websites, also known as spoofed websites, are a very common deception tactic that attackers now rely on to obtain a person’s login credentials to a legitimate website. The operation, ...

Shapes-Left

Join thousands of your peers! Subscribe to our blog.

Ironscales needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at any time. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, please review our Privacy Policy.

Shapes-Right