Avanan Blog Attack Briefs (6)


Over Half of Malicious Files are HTML Attachments

Our research has revealed that credential harvesting remains the top attack vector, responsible for 59% of attacks. This malicious tactic also plays a significant ro...

Read more

Using Legitimate PDFs for BEC 3.0 Attacks

Soda PDF is a popular PDF editing tool. It allows for the easy editing of PDFs–which is not always an easy thing to do–as well as various features like conversion to...

Read more

The Picture in Picture Attack

Successful hacks rarely spell out what’s about to happen.

Read more

Leveraging Dropbox to Soar Into Inbox

Email threats continue to increase. In the first half of 2022, according to Check Point Research, email-delivered attacks reached 89% of all in-the-wild attacks.

Read more

Creating Malicious Content Hosted on Squarespace

We have been tracking the next wave of Business Email Compromise attacks. It relies on the use of legitimate services to unleash attacks. There’s nothing fake or spo...

Read more

The Fake Firefighter PayPal Scam

We've written extensively about the tremendous wave of attacks that are being originated from PayPal.

Read more

Phishing Links via Linktree

UPDATE, 5/2/23: On Tuesday, 5/2/23, Avanan researchers and members of Linktree’s security and trust team spoke via video conference. The two companies spoke in more ...

Read more

Zelle Phishing

Zelle, the widely used and highly acclaimed money-transfer service, is now a prime target for cybercriminals. The simplicity of sending funds to friends or businesse...

Read more

14-Day Free Trial – Experience the power and simplicity of Avanan Cloud Security.   Start Free Trial