Abnormal Blog

Discover how cybercriminals obtain corporate data from brokers like ZoomInfo and Apollo to enable targeted business email compromise (BEC) attacks.

Learn how cybercriminals use superficial disclaimers to deceive others while facilitating illegal activity on cybercrime forums.

Cybercriminals are abusing Docusign by selling customizable phishing templates on cybercrime forums, allowing attackers to steal credentials for phishing and business email compromise (BEC) scams.

SendGrid and Mailtrap credentials are being sold on cybercrime forums for as little as $15, and they are used to send phishing emails and bypass spam filters. Learn how infostealers and checkers enable this underground market.

Learn about the techniques cybercriminals use to steal Zoom accounts, including phishing, information stealers, and credential stuffing.

This article examines the top five ChatGPT jailbreak prompts that cybercriminals use to generate illicit content, including DAN, Development Mode, Translator Bot, AIM, and BISH.

Discover key cybersecurity takeaways from last week’s email breach on federal agencies by a Chinese APT group.

Generative AI tools like ChatGPT and Google Bard are already being used by cybercriminals for BEC attacks, phishing, and malware. Here's how to combat email-based attacks.

Discover how two BEC threat groups are using automated translation tools to execute payment fraud and payroll diversion attacks in several languages simultaneously.

Discover how Firebrick Ostrich uses open-source intelligence to run their BEC scams in these supply chain compromise examples.

Threat actors are capitalizing on the new year, posing as human resources officials to send credential phishing attacks.

As spammers become more sophisticated across cloud services, Abnormal is addressing new attacks including this recent malicious calendar invite.

Discover how ChatGPT can be used by threat actors to run business email compromise schemes and other email attacks.

Reduce your risk of a BEC or phishing attack this holiday season by watching out for these email threats.

Cybersecurity expert Ira Winkler discusses risks to cloud email and how to block both inbound email attacks and emerging threats.

Threat group Lilac Wolverine is fine-tuning the art of exploiting people’s willingness to help others in some of the largest gift card attacks we've seen.

This post explores the continuation of the sharp decline in ransomware attacks as well as a few other notable data points from Q3 2022.

Uncovering how threat group Crimson Kingsnake uses third-party impersonation tactics to swindle organizations across the world.

Allowing remote work improves engagement and retention, but it also increases your attack surface. Here’s how to protect your distributed workforce.

Learn about active defense, an innovative approach our threat intel team uses to understand and block business email compromise attacks.

Threat group Cobalt Terrapin uses sophisticated impersonation techniques with multiple steps to commit invoice fraud.

Discover how threat group Chiffon Herring leverages impersonation and spoofed email addresses to divert paychecks to mule accounts.

In this attack, threat actors impersonate a teacher to deliver Matanbuchus malware-as-a-service (MaaS) using a Google Drive link.

The number of ransomware attacks continued its downward trend in Q2 2022. Learn why and discover more about ransomware threat actors and targets.