Email threats still manage to evade enterprise email perimeter defenses 79% of these threats are phishing, according to Cyren

New research published by Cyren shows that enterprise email perimeter defenses are often unable to prevent well-designed email attacks.

In an average month, 75 malicious messages per 100 mailboxes escape email security filters such as Microsoft 365 Defender. This means that a company with 5,000 mailboxes would need to detect and respond to 3,750 confirmed malicious threats each month.

The majority (79%) of these threats are phishing emails, which are emails containing URLs leading to web content intended to collect login credentials, personal information or payment data. It is often the prelude to other attacks, such as ransomware.

More than half (55%) of detected phishing, spoofing and malware email attacks were received by more than one user. However, two-thirds of the email attacks were sent to a ten users, suggesting that the attacks were targeted. These target or unique threats are of course more difficult to block.

Cyber ​​criminals specialize in email deliverability“says Mike Fleck, Vice President of Marketing at Cyren.”One of the ways to do this, which I see very often, is to use legitimate services. So, for example, they use the same e-mailing services that companies use to market their products. They use things that aren’t going to be blocked because their predominant use case is marketing emails from legitimate e-commerce sites..”

The most common technique used by attackers to evade detection is sending email from a well-known webmail domain like gmail.com. This technique represents 32% of the evasion techniques used.

The study reveals that automatic detection models detected 99% of confirmed threats. Of the 1% that required manual analysis, 41% were suspect and 59% turned out to be false negatives.

The cliché wants man to be the weakest link“, adds Mr. Fleck. “And it’s so easy to say that I think this report says yes, humans are the weakest link, and cybercriminals know that, so they’re attacking your email to get their credentials.

The report concludes that organizations can greatly improve their ability to prevent attacks by optimizing their abilities to quickly detect and contain evasive phishing.

Source : Cyren

And you?

What do you think ? do you find this study relevant?
What about within your company?

See as well :

40% of incoming emails pose a potential threat, whether spam, phishing or advanced threats, such as CEO fraud, according to Hornetsecurity

45% of fraud is carried out using brand names, with the United States (21%) and Spain (14%) the countries with the most victims, according to Outseer Research

40% of emails are a threat, archive files to conceal malware constitute 33.6% of cyber crimes committed by email, according to Hornetsecurity

Related posts:

Do not reconcile with Swafan EX cable, a new fan, you can try it in the commart event.
Colors of the homeland | iPhone 14 Pro Max release date in Egypt 2022.. Know its price and specific...
Elden Ring exceeded 20 million units sold
Why a separate app for Apple Music Classical? Company answers these and other questions!
The MacBook Pro M2, the great champion of Apple's ultrabooks, benefits from a 150€ reduction!
Beware of it.. These foods eliminate the whiteness of teeth
Discovering Megamonodontium McCloskey: Unveiling the 15-Million-Year-Old Giant Spider Fossil in Aust...
BMW M240i x Porsche 718 Cayman x AMG CLA 45 three-seater comparison that pleases the appearance of t...

$20 billion agreement to compensate First Nations children and families

What will be Sandovalera’s next race? | Equestrianism 123

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.