Blog - Page 11 of 17 - Perception Point

How to Detect Malware: Hancitor Malware Delivered Using Spoofed Docusign Email and Microsoft Word

Perception Point’s advanced email security service managed to intercept thousands of attack emails impersonating DocuSign, utilizing the Hancitor Malware. The following blog details this alarming attack.

Perception Point Incident Response
Jul-21

Phishing Campaign for Stealing USPS Customers’ Credit Cards Details

A sophisticated attack spoofing the United States Postal Service lures unsuspected users to enter their personal information and credit card numbers.

Din Serussi, IR Team
Jul-21

Using CVE-2020-9971 to escape Microsoft Office’s app sandbox

In this blog, our researchers demonstrate how they were able to weaponize a Word document with a published macOS/iOS privilege escalation exploit, lift the app sandbox restrictions and gain higher privileges.

Ron Hass, Senior Researcher
Jun-21

Dangerous Phishing Campaign for Harvesting Credentials using an HTML Attachment

Be aware. Attackers are impersonating legitimate brands, attaching to emails an HTML file containing a fake log-in page, intended for harvesting credentials. To complete the disguise, they finish with redirecting to the real brand website.

Oded Kalev, Software Dev
Jun-21

Qakbot Malware: Insights Into an Excel 4.0 Macro Attack

In this campaign, the attacker conceals malicious payload by deeply embedding it within multiple types of content and using different evasion techniques. Perception Point's IR team found loopholes and was able to backtrack his steps to understand his techniques.

Shai Golderman, IR Team
Jun-21

An Insider’s View into Blocking Email Threats

The Importance of Blocking Crypto Viruses, Threats, and Attempted Phishing Attacks

Perception Point Marketing
Apr-21

Netflix Phishing Scams Rise by 250% in 3 Months

The Perception Point IR Team found a major increase (250%) in the number of Netflix Phishing scams this quarter compared to last quarter.

Perception Point Incident Response
Mar-21

‘CEO Fraud’ Phishing Kit on the Rise

The Perception Point IR Team recently uncovered a new CEO Fraud phishing kit that leverages Backblaze, a cloud-storage tool, to host fake Office 365 login pages.

Perception Point Marketing
Mar-21

Employee Security Training
Proven Not Enough

Train the machine—not just the employee. Hackers know that many companies rely on security employee training alone, so they’ve been upping their game to trick…

Dana Roth, Marketing Manager
Feb-21

Phishing Scams Hosted on Free Website and Form Building Tools Increases

With the abundance of free website building tools available, it’s easier than ever for attackers to mimic legitimate brands by building fake log-in pages. And that's exactly what's been happening.

Dana Roth, Marketing Manager
Feb-21

Default Email Security Not Secure Enough

The adoption of cloud email is increasing every year, with Google Workspace and Microsoft Office 365 dominating. And now, a new report by Gartner noted that many clients have expressed dissatisfaction with default email security solutions, specifically citing Office 365.

Dana Roth, Marketing Manager
Jan-21

internal email security person typing on laptop

Don’t Forfeit Productivity for Secure Internal Email Communication

Gone are the days of running down the hall to ask an important question and get the answer immediately. Remote and hybrid workforces depend heavily…

Dana Roth, Marketing Manager
Jan-21

Blog.