Hero banner - Threat Insight


Threat Insight

Cybersecurity research and commentary on malware, user actions, and other threats to information security
April 21, 2017

A Quiet Quarter Ends With a Bang: Proofpoint Q1 Threat Report

Proofpoint Staff

Proofpoint researchers track the latest trends in malware and online threats for the first quarter of the year.

February 09, 2017

Snowshoe Spamming Brings Scale to Savvy Subdomain Phishing Attacks

Proofpoint Staff

In this blog we describe one of these large-scale attacks and outline best practices for mitigation with DMARC (Domain-based Authentication Reporting and Conformance), a technology that is highly effective but which must be implemented correctly to avoid unintended problems and time-consuming maintenance.

February 08, 2017

New Serpent Ransomware Targets Danish Speakers

Proofpoint Staff

Proofpoint researchers discover a new ransomware variant with polished ransom pages and convincing lures.

February 02, 2017

Hook, line, and sinker - A closer look at a sophisticated phishing kit

Proofpoint Staff

Proofpoint researchers analyze the capabilities and data flow of a new PayPal phishing kit.

January 17, 2017

EITest Nabbing Chrome Users with a “Chrome Font” Social Engineering Scheme


Proofpoint researchers provide background on EITest activity and explore a newly added Chrome case of the EITest infection chain

January 12, 2017

Targeted Threat Leads to Keylogger via Fake Silverlight Update

Danny Howerton

Proofpoint researchers track a targeted keylogger campaign using embedded Visual Basic objects and a fake Silverlight update lure.

December 28, 2016

No Shortcuts to Verification: Social Media Verification Phishing Scams Steal Credentials and Credit Card Numbers

Oisin Patenall

Proofpoint researchers track a phishing campaign leveraging the concept of "Twitter Brand Verification".

December 08, 2016

Ostap Bender: 400 Ways to Make the Population Part With Their Money

Proofpoint Staff

Proofpoint researchers track a threat actor group using a new malware and malicious emails to infect victims with banking Trojans and POS malware.

December 07, 2016

August in November: New Information Stealer Hits the Scene

Proofpoint Staff

Proofpoint researchers identify a new information stealer that can grab messenger and FTP credentials, cryptocurrency wallets, and other data while evading detection.

December 06, 2016

ZeusPOS and NewPOSthings Point-of-Sale Malware Traffic Quadruples For Black Friday

Proofpoint Staff

Proofpoint researchers track multiple point-of-sale malware variants and seasonal variations in their propagation.