Blog

Blog

BEC Global Insights Report: December 2024

The monthly Global BEC Insights Report from Fortra presents a comprehensive analysis of the latest tactics, techniques, and procedures (TTP) employed by BEC threat actors. This report draws on extensive intelligence gathered from hundreds of active defense engagements conducted throughout the month. Key insights include geolocation data, attack volume, and the variety of scams, such as payroll diversion and advance fee fraud. The report also highlights the use of gift cards in scams, the requested amounts in wire transfer fraud, and the banks and webmail providers frequently targeted by attackers. These findings provide a critical understanding of the evolving BEC threat landscape.
Blog

Evolving Cyber Resilience

Explore how treating cybersecurity challenges like a biological ecosystem can simplify complexity, reduce redundancies, and build a resilient, adaptive security posture. Learn to classify problems, trace evolutionary patterns, and create a scalable cyber ecosystem for long-term success.
Blog

Highlights from Release Day 2025.1

Fortra’s 2025.1 Release Day includes improvements to email security, managed file transfer, data classification, security awareness training, and more.
Blog

Riskiest Social Media Platforms, Q4 2024

Every quarter, Fortra analyzes thousands of social media incidents to identify the top threats and trends plaguing organizations, their brands, and employees. Social media is a highly attractive environment to cyber attackers due to the large user base, constant flow of information, and the shift of younger generations relying more on social platforms for information instead of web searches. This...
Blog

Patch Tuesday Update December 2024

While not the smallest December Patch Tuesday we’ve ever had, there are only 72 CVEs this month, with only one that has been publicly disclosed and exploited and one that scores above a CVSS 9.0. 
Blog

BEC Global Insights Report: November 2024

The monthly Global BEC Insights Report from Fortra presents a comprehensive analysis of the latest tactics, techniques, and procedures (TTP) employed by BEC threat actors. This report draws on extensive intelligence gathered from hundreds of active defense engagements conducted throughout the month. Key insights include geolocation data, attack volume, and the variety of scams, such as payroll diversion and advance fee fraud. The report also highlights the use of gift cards in scams, the requested amounts in wire transfer fraud, and the banks and webmail providers frequently targeted by attackers. These findings provide a critical understanding of the evolving BEC threat landscape.
Blog

Cloudflare’s pages.dev and workers.dev Domains Increasingly Abused for Phishing

IntroductionFortra has observed a rising trend in legitimate service abuse, with a significant volume of attacks targeting Cloudflare Pages. Workers.dev is a domain used by Cloudflare Workers’ deployment services, while Pages.dev is used by Cloudflare’s Pages platform that facilitates the development of web pages and sites. Fortra’s Suspicious Email Analysis (SEA) team has identified different...
Blog

What’s On the Security Horizon for 2025? Fortra’s Experts Predict

From customers probing about vendors’ supply chain practices to attackers threatening victims with personal health information, the cybersecurity landscape is increasingly pushing its way out of the shadows and into the limelight — for better or worse. See what these Fortra experts have to say on the trends facing the industry in 2025.
Blog

How Three Companies are Reducing Costs with an RPA Solution

It’s becoming all too common that organizations are seeing the costs of doing business rise. Adding to the pinch, teams are being asked to do more with less as workloads and tasks quickly pile up. While it may seem backwards to invest in new software while on a tight budget, investing in a robotic process automation (RPA) solution can be the key to filling coverage gaps, maximizing resources, and...