Resources

Guide

Ransomware Playbook: Defense in Depth Strategies to Minimize Impact

Ransomware operators are disabling critical systems and publishing stolen data in record volumes, and businesses that fall prey to an attack often feel helpless determining a solution because the threat itself is in a constant state of evolution. This playbook breaks down how to: Identify and mitigate attacks before they occur Maintain broad visibility into data leaks and...
Guide

Quarterly Threat Trends & Intelligence May 2022

May 2022 In Q1, Agari and PhishLabs detected and mitigated hundreds of thousands of phishing, social media, email, and dark web threats targeting a broad range of enterprises and brands. The Quarterly Threat Trends & Intelligence Report provides an analysis of the latest findings and insights into key trends shaping the threat landscape. Readers will learn: How phishing...
Guide

Domain Impersonation Whitepaper

Preventing Domain Impersonation: How to Stop Look-Alike Domains and Spoofing In the first half of 2023, cybercriminals targeted company brands using an average of 40 look-alike domains per month. Domain impersonation threats trick users into giving away sensitive information by convincing them an email is from a trusted source or a website is authentic. It’s crucial that...
Guide

Navigating Social Media Threats: A Digital Risk Protection Playbook

Threat actors are using social media to target enterprises and their customers with fraudulent accounts. The nature of instant sharing on social media means organizations can face swift reputation damage or financial loss if they fall victim to one of the many threat types used on these platforms. In order to effectively protect against social media threats, security teams must...
Guide

How to Defend Against Look-alike Domain Threats: A Digital Risk Protection Playbook

Look-alike domains are one of the most versatile tools a threat actor can use to attack an organization. They lay the foundation for a wide range of cyberthreats, including reputation abuse, phishing sites, and email scams. This playbook breaks down: The domain lifecycle and how domains are abused Threats criminals use to deceive and defraud their targets How look-alike...
Guide

Fortra Wins 2022 Frost & Sullivan DRP Company of the Year

With its strong overall performance, Fortra earns the 2022 Frost & Sullivan Global Company of the Year Award in the DRP industry. With more than 60 years of coaching organizations all over the world, Frost & Sullivan provides the tools for growth and long-term success to their clients. Their Company of the Year Award is a great honor as it “exemplifies visionary innovation,...
Guide

Frost Radar: Digital Risk Protection (DRP) Services, 2022

See how Fortra stacks up against the biggest names in Digital Risk Protection. Frost and Sullivan’s 2022 DRP report gives you a better understanding of Digital Risk Protection vendors and what they have to offer.   The report includes:  Frost Radar on DRP Services  Evaluation of the competitive environment  Detailed analysis of vendors looking specifically at Innovation,...
Guide

2023 Cyberthreat Defense Report

Compare your company’s security practices with industry peers! The 2023 Cyberthreat Defense Report, now in it’s 10th year, provides deep insight into the minds of security professionals. Insights from this year’s survey include: The threats that most concern IT teams include account takeover (ATO) attacks, phishing, and brand impersonation on social media Double and triple...
blog

Dark Web Threats Targeting the Airline Industry

The allure of airline status and points, along with the abundance of personally identifiable information (PII) of customers and employees, make the airline industry a prime target for threat actors on the dark web. Depending on the goal of the actor and the nature of the stolen data, criminals can find airline-specific materials for sale on a variety of markets. Nick Oram,...
Resource

Emergency Request

If you are currently experiencing an attack and need help, please call our Security Operations Center or submit an Emergency Request by filling out the form to the right. We will respond to your request within 1 hour. SOC: +1.877.227.0790 or +1.202.386.6001 For all other inquiries, please submit a Contact Request. ...
Demo

Better Security Awareness, Stronger Data Protection

Nearly 1 in Every 10 Employees Click on Phishing Email Links All it takes is one ill-advised click in a fraudulent email from an unaware end user to cause a security breach. This can leave your organization vulnerable to operational, reputational, and revenue harm. Minimize your cybersecurity risk levels and build key resilience by teaching employees and third-party vendors...
Demo

Fortra’s PhishLabs is the leading provider of threat intelligence and mitigation solutions. We safeguard critical digital assets from external cyberthreats through expertly curated threat intelligence, high-fidelity detection, and complete mitigation against brand impersonation, data leakage, social media threats, account takeover, and more. Our Digital Risk Protection...
Blog

PhishLabs Blog Subscription

The PhishLabs Blog is where we share our insights, interviews, and videos about cybersecurity awareness and reducing digital threats. Sign up and we’ll keep you updated on interesting threats and scams, infosec news, events, and opinions on industry issues and trends. The blog newsletter will feature: Fresh industry content Somewhat entertaining videos The latest trends...
Blog

The Email Security Gaps in Your Cloud

It’s not news that most enterprises operate in the cloud. Migration to the cloud leads to better collaboration, data storage, and lower costs compared to on-premises resources. Odds are your organization is currently enjoying the conveniences of the cloud.  The cloud has reshaped the way organizations operate, but with the migration comes new obstacles in email security, and...
Blog

LastPass Fortra's PhishLabs Partnership: A Focus on Proactive Customer Protection Pays Off in 2023

As we approach the end of the year, LastPass Labs has reviewed the last 12 months to take account of the threat environment and how it has changed, as well as our accomplishments. Throughout 2023, the Threat Intelligence, Mitigation, and Escalations (TIME) team focused on rapidly expanding our capabilities to protect our customers from phishing sites and/or infostealers. A...
Blog

Brand Threats Masterclass: Experts Reveal Top Attacks and Defense Tactics

There is little doubt that AI-fueled impersonation campaigns and novel attacks via non-traditional channels have emerged as a primary concern for security teams. Brand impersonation is on the rise, with nearly 40 look-alike domains targeting brands each month. On social media, impersonation attacks account for almost half of all threatening content. And online counterfeit...
Blog

Google and Yahoo Take Stance on Email Authentication

Google and Yahoo announced new email authentication requirements for those sending email to their users, with a rapid deadline of February 2024. At Fortra, we commend this push to require email authentication as a huge step in the ongoing fight against spoofing and abuse. But if the requirements are not in place by the deadline, certain emails may no longer be delivered. This...
Blog

How Organizations Can Use Dark Web Intelligence

The scope of intelligence on underground marketplaces is vast and navigating the dark web in search of brand mentions and potential threats can be time-consuming and complex. In order to proactively defend against attacks and mitigate the threat of leaked information, organizations should consistently monitor marketplaces and forums for data pertaining to their brand. If...
Press Release

IT Security Wire: Cybersecurity in 2023: Top Three Predictions

In this IT Security Wire article, cybersecurity experts Eric George and Tom Gorup, Vice President of Security Operations at Fortra’s Alert Logic, share their 2023 cybersecurity predictions. Originally published in IT Security Wire “PaaS (phishing-as-a-service) platforms simplify the creation and execution of credential theft phishing attacks which target the customers or...
Blog

Q3 Payload Report

QBot, the leading payload family in Q3, was disrupted as part of a coordinated, multinational operation led by the FBI on August 29, 2023. This resulted in the removal of 700,000 QBot payloads from infected devices across the globe, and interrupted the activity of one of the most active malware families since the former juggernaut Emotet, which was disrupted in 2021. While...