Threat Insight

Cybersecurity research and commentary on malware, user actions, and other threats to information security
April 26, 2017

Facebook Spam Botnet Trades Account Access for Likes

Proofpoint Staff

Proofpoint researchers analyze a Facebook spam botnet that uses a legitimate app and the human factor to spam a major media company.

April 25, 2017

Philadelphia Ransomware Brings Customization to Commodity Malware

Proofpoint Staff

Proofpoint researchers track the changing ransomware landscape and examine the use of commodity ransomware in targeted attacks on healthcare organizations.

April 21, 2017

A Quiet Quarter Ends With a Bang: Proofpoint Q1 Threat Report

Proofpoint Staff

Proofpoint researchers track the latest trends in malware and online threats for the first quarter of the year.

April 10, 2017

Dridex Campaigns Hitting Millions of Recipients Using Unpatched Microsoft Zero-Day

Proofpoint Staff

Proofpoint researchers have discovered that Dridex actors are already using CVE-2017-0199, a Microsoft Word zero-day first publicly revealed this weekend and patched April 11.

April 04, 2017

High-Volume Dridex Campaigns Return, First to Hit Millions Since June 2016

Proofpoint Staff

Proofpoint researchers track several new high-volume Dridex campaigns - the first to hit millions of recipients since May 2016.

March 13, 2017

Mobile Malware Masquerades as POS Management App

Proofpoint Staff

Proofpoint researchers examine a new piece of mobile malware that purports to be a point-of-sale management app but is actually a powerful information stealer.

March 08, 2017

Magnitude Actor Adds a Social Engineering Scheme for Windows 10


Proofpoint researchers provide background on Magnitude activity and explore a newly added social engineering scheme

March 06, 2017

Phishing Goes Mobile – The Rise of SMS Phishing

Dave Jevans

Proofpoint researchers track an SMS phishing campaign and gain insights into this increasingly prevalent attack vector.

March 01, 2017

Another Tax Season Brings More Phishing Lures and a Variety of Malware

Proofpoint Staff

Proofpoint researchers track several threats that leverage IRS and tax themes to convince victims to disclose personal information and open malicious documents and links.

February 09, 2017

Snowshoe Spamming Brings Scale to Savvy Subdomain Phishing Attacks

Proofpoint Staff

In this blog we describe one of these large-scale attacks and outline best practices for mitigation with DMARC (Domain-based Authentication Reporting and Conformance), a technology that is highly effective but which must be implemented correctly to avoid unintended problems and time-consuming maintenance.


Stay Connected