Credential Phishing

B HTML and Java Script Phishing

Author Callie Hinman

Callie Baron

Author Piotr Wojtyla

Piotr Wojtyla

Explore real phishing attacks that use HTML and JavaScript to bypass defenses and learn what makes these emails so hard to detect.

How HTML and JavaScript Fuel Modern Phishing: 3 Real-World Examples

Attack Stories

Threat Intel

B Flask Phishing Kit

Learn how threat actors used Flask, a popular Python framework, to build a versatile phishing kit for evasive campaigns that bypass traditional defenses.

Flask Phishing Kit: Targeted Credential Theft Using Open-Source Technology

Artificial Intelligence

B Bypassing Safeguards in Leading AI Tools

Can generative AI be manipulated for cybercrime? Our research shows how attackers can bypass safeguards in today’s top AI tools.

Bypassing Safeguards in Leading AI Tools: ChatGPT, Gemini, Claude

B DKIM Replay Google Phishing Attack

Threat actors used DKIM replay to send Google-branded phishing emails that passed authentication checks. Here’s how the attack worked and why it’s hard to catch.

Replay, Reuse, and Rob: How Attackers Exploit DKIM and Turn Google OAuth Alerts into Phishing Lures

B Gamma Attack Story Blog

Attackers exploit Gamma in a multi-stage phishing attack using Cloudflare Turnstile and AiTM tactics to evade detection and steal Microsoft credentials.

Multi-Stage Phishing Attack Exploits Gamma, an AI-Powered Presentation Tool

B Exploiting Trusted AI Tools Blog

Malicious AI is rewriting the rules of cybercrime. Learn how traditional GPTs are being exploited and why security teams need to act now.

When Good GPTs Go Bad: How Trusted AI Tools Are Exploited for Attacks

B AI Generated Zoom Impersonation Phishing Attack

Threat actors impersonated Zoom using an AI-generated phishing page to deliver a remote monitoring and management tool.

AI-Generated Zoom Impersonation Attack Exploits Tax Season to Deploy Remote Desktop Tool

B Design and Diagramming Tools Phishing Attack

Cybercriminals are exploiting trusted tools like Canva, Figma, and Lucidchart for phishing. Learn how these attacks work—and how to protect your business.

Inside the New Wave of Phishing Attacks Exploiting Trusted Design and Diagramming Tools

B PDF Annotations Mask Malicious QR Codes Blog

Attackers are exploiting PDF annotations to disguise phishing QR codes, bypassing security and deceiving users. Learn how this sophisticated threat works.

Hiding in Plain Sight: How Attackers Use PDF Annotations to Mask Malicious QR Codes

B Corrupted Word Doc QR Code Phishing Attack

Attackers exploit Microsoft Word’s file recovery to evade detection, using corrupted docs for QR code phishing. Learn how this tactic bypasses legacy security.

That Word Document Isn’t Broken—It’s a Phishing Attack in Disguise

B Phishing Loop Bypass MFA Compromise Accounts Blog

A new phishing campaign targeting Microsoft ADFS bypasses MFA with social engineering and technical deception. Learn how attackers take over accounts—and how to stop them.

The Never-Ending Loop of Phishing: How Attackers Exploit Psychology to Bypass MFA and Compromise Accounts

B Punycode Problem Blog

Explore how threat actors exploit Punycode in email attacks and learn how AI-driven solutions can protect against these threats.

The Punycode Problem: Protecting Your Inbox from Deceptive Domains

Data & Trends

B Cyberattack Forecast Emerging Threats Blog

Uncover the latest email threats and strategies to strengthen your cybersecurity and prepare for 2025.

2025 Cyberattack Forecast: Top Email Threats to Watch for

B Dropbox Open Enrollment Attack Blog

Discover how Dropbox was exploited in a sophisticated phishing attack that leveraged AiTM tactics to steal credentials during the open enrollment period.

Adversary-in-the-Middle Tactics Elevate Dropbox Phishing Attack Capitalizing on Open Enrollment

Demo

Schedule a Demo

Product

Black Hat Product Launch Cover

Person Evan Reiser

Evan Reiser

Abnormal AI announces Security Posture Management for Microsoft 365, international expansion, and Email Security product innovations at Black Hat 2025.

Introducing Security Posture Management for Microsoft 365 (and Six Powerful Platform Enhancements)

B 1500x1500 MKT889c Forrester Wave

Author Lane Billings

Lane Billings

Abnormal AI received the highest scores possible in the Innovation and Roadmap criteria, the top score in the Strategy category, and above-average customer feedback.

Abnormal AI Named a Leader in The Forrester Wave™: Email, Messaging, And Collaboration Security Solutions, Q2 2025

Company & Culture

Gartner Peer Insights Customers Choice 2025 Cover

Alaina Kretchmer

Abnormal AI has been named a 2025 Gartner® Peer Insights™ Customers’ Choice for Email Security Platforms, based entirely on feedback from IT and security professionals. Learn how real users rated Abnormal across key criteria including deployment, support, and product capabilities.

Abnormal AI Recognized as a Customers’ Choice in 2025 Gartner® Peer Insights™ Voice of the Customer for Email Security Platforms

B 1500x1500 BLOG AI Phishing Coach Product Announcement

E03 C83 N442 J U047 UPX5 KLL 1305a10bd70a 512

Ryan Schwartz

Discover how Abnormal transforms security training with personalized phishing simulations, real-time coaching, and fully autonomous program management.

Introducing AI Phishing Coach: Personalized, Autonomous Security Awareness Training

Vendor Email Compromise

B Vendor Email Compromise Case Study Blog

Author Elizbeth Swantek

Elizabeth Swantek

See how a real vendor email compromise attack fooled multiple employees. Learn why VEC succeeds and how AI makes these threats more dangerous.

Thread Hijacked: Breaking Down a Real Vendor Email Compromise Attack

Email Subscribe

<p> Subscribe to our newsletter to receive updates on the latest attacks and new trends in the email threat landscape.</p>

Homepage

Breadcrumbs

Abnormal AI provides advanced email security to prevent credential phishing, business email compromise, account takeover, and more.

Abnormal AI

Learn about the latest cybercrime attack types and email security data trends and discover the latest product and company announcements from Abnormal.

Email Security Blog

description

cybersecurity, insight, news, team, latest, experts

keywords

https://images.abnormalsecurity.com/production/images/L_Abnormal-homepage_Opengraph.png?w=1200&h=630&q=82&auto=format&fit=crop&dm=1740090372&s=5d61b4c2e242be3ca70dfe1d54859b11

referrer

robots

twitter:card

twitter:creator

twitter:description

https://images.abnormalsecurity.com/production/images/T_Abnormal-homepage_Opengraph.png?w=800&h=418&q=82&auto=format&fit=crop&dm=1740090398&s=d6f915fc8861f3928b09a79dae44e4be

twitter:image

twitter:image:alt

twitter:image:height

twitter:image:width

twitter:site

twitter:title

{"title":{"title":"Email Security Blog | Abnormal AI"}}

Abnormal Blog

<p>Named a 2025 Gartner® Peer Insights™ Customers’ Choice for Email Security</p>

.css-bmf3w{font-family:inherit;font-size:15px;font-style:normal;font-weight:400;line-height:24px;}Abnormal Blog.css-7dny4u{-webkit-padding-start:12px;padding-inline-start:12px;-webkit-padding-end:12px;padding-inline-end:12px;display:inline;}/Author/Piotr Wojtyla

Piotr Wojtyla

Abnormal Blog/Author/Piotr Wojtyla