Fortra was included in Cybercrime Magazine’s "Who’s Who In Domain Security: 10 Companies To Watch In 2026," a resource guide for CISOs and MSSPs published following RSAC 2026.

Moonlock published an in-depth article examining the GhostPoster browser extension campaign, featuring research and expert insight from Daud Jawad, Security Engineer on the Fortra Intelligence and Research Experts (FIRE) team.

Fortra Senior Fellow Threat Researcher John Wilson joined CyberRisk TV during RSAC 2026 to discuss the FIRE team’s new research on Scripted Sparrow, a highly active BEC collective sending millions of targeted scam emails each month.

A recent Forbes article, later picked up by Yahoo Tech, covered Microsoft’s disclosure of CVE-2026-21262, an SQL Server privilege escalation vulnerability that was publicly revealed before a patch was released.

In new research featured by Redmond Magazine, the Fortra Intelligence and Research Experts (FIRE) team uncovered a GitHub-driven vishing campaign abusing legitimate notification emails to impersonate trusted brands.

Chris Reffkin, Chief Security & Risk Officer at Fortra, authored an article for Manufacturing.net that outlines how technology and security leaders should react in the critical early moments of a ransomware attack. He explains why containment must remain the top priority, how leaders should communicate clearly and quickly with executives, and how to assess the impact with support from legal and incident response teams.

Ricardo Narvaja’s vulnerability research is featured in Cyber Security News, examining CVE-2026-2636, a denial-of-service flaw in Windows’ Common Log File System driver. The vulnerability allows a low-privileged user to trigger an unrecoverable Blue Screen of Death through a simple proof of concept requiring only two API calls. 

Software and cloud vulnerabilities continue to grow in volume and complexity. In IT Security Wire, Tyler Reguly outlines how organizations can move beyond patching everything and instead focus on prioritization, stakeholder alignment, and asset visibility to reduce fatigue and improve outcomes.

Fortra appears in the Q4 2025 APWG Phishing Activity Trends Report for its analysis of Business Email Compromise activity and attacker behavior. The report shows how anti-phishing tools help track evolving threat patterns at scale. Fortra reviewed thousands of BEC attacks this quarter and found a 136% increase in wire transfer attempts. The average amount requested increased to $50,297. The report...

Ransomware groups are increasingly using AI powered bots to scale negotiations, compress timelines, and pressure incident response teams.

Bob Erdman, Associate VP of R&D at Fortra, is quoted in a recent The Epoch Times feature exploring how personal data accumulates on the darknet, how criminals monetize breach information, and why these underground markets continue to grow despite law enforcement action. Erdman highlights how repeated breach exposures allow attackers to build and trade increasingly complete identity profiles,...

CSO reported on Microsoft’s February 2026 Patch Tuesday release, which addressed 60 vulnerabilities, including six that are new and actively exploited.

Josh Davies was featured in a recent The Register article examining the risks behind the viral AI caricature trend.

Family Handyman published an article exploring how QR codes, now widely used for payments, menus, and information sharing, are being abused by scammers.

The FIRE team uncovered an SEO poisoning marketplace that helps threat actors manipulate search rankings by placing malicious backlinks on compromised but legitimate websites.

John Wilson, Senior Fellow, Threat Research at Fortra, authored an article for The AI Journal examining the security implications of OpenAI’s Sora 2. The piece looks at how increasingly realistic AI-generated video changes the threat landscape, particularly around deepfakes, social engineering, and the misuse of personal likenesses. 

In a Computing Security feature, Pablo Zurro, senior product manager at Fortra, shares perspective on how breach and attack simulation and penetration testing continue to play a critical role as attackers adapt and innovate.

Tyler Reguly, Associate Director of Security R&D at Fortra, was quoted in a CSO article examining Microsoft’s January 2026 Patch Tuesday, which includes an actively exploited zero-day and several critical vulnerabilities affecting Windows, Office, and SharePoint.

Josh Taylor examines how hacktivism has shifted from headline-grabbing stunts to something far more complex and harder to spot.

Pig butchering scams blend romance, emotional manipulation, and financial fraud. In an episode of DateNight... with Laurel House, John Wilson breaks down how organized cybercrime groups use AI generated identities, fake profiles, and crypto investment schemes to exploit victims at scale.