email threats

A new wave of targeted phishing attacks is sweeping through organizations, exploiting a legitimate Microsoft 365 feature to wreak havoc from inside the trusted walls of enterprise email. Security researchers have recently uncovered threat actors using the Microsoft 365 “Direct Send” capability...

Cybercriminals have developed a sophisticated method to compromise Microsoft 365 accounts by exploiting link-wrapping services, notably those provided by Proofpoint and Intermedia. This technique involves manipulating the very tools designed to protect users, thereby increasing the effectiveness...

A new wave of cyberattacks has exposed a dangerous flaw in trusted email security services, as hackers have successfully exploited protective link-wrapping features to orchestrate large-scale phishing campaigns targeting Microsoft 365 logins. By hijacking the mechanisms designed to keep users...

Threat actors are increasingly exploiting Microsoft 365’s Direct Send feature to conduct highly convincing internal phishing campaigns, eroding trust within organizations and challenging the efficacy of traditional security defenses. This emergent attack vector, recently highlighted by...

In the ever-evolving landscape of cybersecurity, email remains a primary vector for attacks such as phishing, malware, and business email compromise (BEC). To bolster defenses, organizations often deploy a combination of native security solutions and third-party tools. Microsoft Defender for...

Russian state-sponsored hacking campaigns have once again made international headlines, following the UK’s public attribution of a newly discovered malware strain—nicknamed “Authentic Antics”—to the infamous APT28 group, also known as Fancy Bear or Forest Blizzard. This revelation not only draws...

For years, organizations have wrestled with the challenge of understanding and optimizing their email security posture within enterprise environments. Email remains a top vector for both opportunistic and targeted attacks—phishing, business email compromise, and malware routinely slip through...

Microsoft’s recent move toward greater transparency in email security effectiveness offers a timely and much-needed step forward for organizations seeking to stay a step ahead of relentless and evolving cyber threats. Over the past decade, the threat landscape has shifted dramatically...

Phishing attacks remain a relentless challenge in the digital security landscape, and for organizations relying on Microsoft 365, the stakes have never been higher. As business email compromise, credential theft, and weaponized attachments evolve—often powered by artificial intelligence—security...

Microsoft is once again raising the bar in enterprise email security with the rollout of Mail Bombing Detection in Microsoft Defender for Office 365, a move set to strengthen defenses against one of the most disruptive cyberattack trends affecting organizations worldwide—email bombing. As attack...

Email bombing, a cyberattack technique that inundates a target's inbox with a deluge of emails, has long been a tool for malicious actors aiming to disrupt communication channels and mask more insidious activities. Recognizing the escalating threat posed by such attacks, Microsoft has introduced...

For many organizations, the expectation is that internal communications on their Microsoft 365 tenants are inherently more trustworthy—after all, who would question an authentication-free email from the company’s own domain? Yet a recent investigation by the Varonis Managed Data Detection and...

Phishing attacks continue to challenge organizations worldwide, evolving in sophistication and leveraging the very tools designed to enhance digital communication. An alarming new campaign has emerged wherein cybercriminals exploit Microsoft 365’s Direct Send feature—traditionally trusted for...

In a significant move to bolster email security, KnowBe4 and Microsoft have announced a strategic integration aimed at enhancing protection for organizations using Microsoft 365. This collaboration introduces KnowBe4 Defend, a solution designed to complement Microsoft's existing email security...

Here’s a summary of the news: KnowBe4 and Microsoft have announced a strategic integration aimed at boosting email security for organizations using Microsoft 365. This collaboration involves KnowBe4 Defend integrating with Microsoft Defender for Office 365, particularly its quarantine...

In the rapidly evolving digital landscape, email remains one of the most persistent attack surfaces for cybercriminals, and with attacks growing more sophisticated, enterprise reliance on powerful security platforms has become indispensable. Microsoft, a perennial leader in cloud-based...

In a significant move to bolster email security, KnowBe4 has announced a strategic integration with Microsoft, marking the first initiative within Microsoft's Integrated Cloud Email Security (ICES) vendor ecosystem. This collaboration aims to enhance protection for mutual customers by combining...

In a significant advancement for email security, KnowBe4 has announced a strategic integration with Microsoft Defender for Office 365, marking the inaugural partnership within Microsoft's Integrated Cloud Email Security (ICES) vendor ecosystem. This collaboration aims to enhance organizations'...

Microsoft has unveiled a new security feature within its Defender for Office 365 suite aimed at mitigating the rising threat of email bombing attacks. This feature, termed "Mail Bombing Detection," is designed to automatically identify and quarantine high-volume email flooding campaigns that...

Microsoft’s recent expansion of its Defender for Office 365 platform signals another significant step toward creating a holistic, adaptive, and integrated email security solution for enterprises navigating increasingly complex threat landscapes. The latest announcement introduces a broad ICES...