Phishing Protection

Discover attackers impersonating your domains, social accounts, and mobile applications.

The Ecosystem of Phishing: From Minnows to Marlins

$1 for a cheap domain. $12.99 for 10m email contacts. Cybercriminals can launch phishing campaigns for under $20!
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Resources for Your Team during the Coronavirus Pandemic
Take Me There
Exposed Credentials Solutions Guide
Get Your Copy
Initial Access Brokers: A Deep Dive

On-demand Webinar
Watch Here
40:30
Beware of Phishers: New Research into the Ecosystem of Phishing

In this upcoming webinar, Harrison Van Riper and Alex Guirakhoo walk through the Ecosystem of Phishing. The team will cover New phishing data findings, How cybercriminals are crafting and distributing
- Facebook
- Twitter
- Email
- LinkedIn
Watch Video
Typosquatting and the 2020 U.S. Presidential election: Cyberspace as the new political battleground

we detected over 550 typosquats for the 34 candidate- and election-related domains we gathered from open-source research. Not every single one was something interesting; most of the time the typosquat
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Combatting Domain-Centric Fraud: Why Mimecast is partnering with Digital Shadows

The Digital Shadows service continually identifies when new potentially impersonating domains emerge, and provides a risk score based on contextual information such as whether the domain is hosting...
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
The Complete Guide to Online Brand Protection

This blog will outline the top threats to brands we see online, and some of the best practices for protecting them.
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
10:00
Typosquatting and the 2020 U.S. Presidential election

Photon Research Team thought it would be interesting to use this pool of candidates as a backdrop for research into typosquatted domains
- Facebook
- Twitter
- Email
- LinkedIn
Watch Video
Enforcement: Mimecast Integration Datasheet

Digital Shadows integrates with Mimecast email security to proactively protect your employees from known domains posing a phishing risk, reducing the likelihood of successful phishing attacks.
- Facebook
- Twitter
- Email
- LinkedIn
Read Report
Dark Web Typosquatting: Scammers v. Tor

Time and time again, we see how the cybercriminal ecosystem often mirrors what happens in the business world. This can ...
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Domain Squatting: The Phisher-man’s Friend

Simon talks about how easy it is to conduct domain squatting and typosquatting, and how little monitoring still goes on around them in the industry.
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
How One Global Retailer Detected Almost 2,000 Spoof Domains | Case Study

See how one global retailer detected almost 2,000 domains impersonating their brand.
- Facebook
- Twitter
- Email
- LinkedIn
Read Report
Typosquatting and the 2020 U.S. Election, Honeypots, And Sudo Vulnerability

Kacey, Charles, Harrison, and Alex kick off this week’s episode talking about our Fall Dallas team event (an amateur version of Chopped). Then we dig into the hot topics of the week.
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Weekly Intelligence Summary 10 Oct - 17 Oct 2019

In the spotlight this week is the “Simjacker” exploit, publicly disclosed in September 2019 and now potentially affecting entities across 29 countries.
- Facebook
- Twitter
- Email
- LinkedIn
Read Report
ANU Breach Report: Mapping to Mitre ATT&CK Framework

We decided to map this intrusion to the Mitre ATT&CK framework, as we have done previously for:
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
5 Ways Cybercriminals Can Access Your Emails Without Phishing

Here are 5 ways that cybercriminals gain access to emails without conducting a phishing campaign or network intrusion.
- Facebook
- Twitter
- Email
- LinkedIn
Read Report
Phishing Site Impersonates Financial Services Institution

If the infamous bank robber, Willie Sutton, were alive today and honed his cyber skills, he might turn his attention ...
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Tackling Phishing: The Most Popular Phishing Techniques and What You Can Do About It

We cover a range of the different techniques attackers of all persuasions (whether sophisticated nation state or low-level hacker) choose when performing their phishing campaigns.
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Weekly Intelligence Summary 03 Oct - 10 Oct 2019

In the spotlight this week is the Iran-linked threat group “APT35”, which took aim at the email accounts of political entities in the United States and prominent Iranians living outside Iran.
- Facebook
- Twitter
- Email
- LinkedIn
Read Report
Iran-Linked APT35, Skimming By Magecart 4, Rancour, And Emotet Resurgence

We’re back in London this week! Viktoria chats with Adam Cook, Philip Doherty, and Josh Poole on this week’s top stories. - APT35 Targets Email of US political figures & prominent Iranians -...
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Dark Web Overdrive: The Criminal Marketplace Understood Through Cyberpunk Fiction

How can the modern network of .onion marketplaces be understood through novels about a cyberpunk dystopia? The answer is in how dark web marketplaces grow and die.
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Texas Ransomware Outbreaks And Phishing Attacks Using Custom 404 Pages

Charles Ragland (a brand new ShadowTalk-er!) and Christian Rencken join Harrison this week to discuss an outbreak of ransomware attacks impacting local government entities across Texas. The team...
- Facebook
- Twitter
- Email
- LinkedIn
Read Post
Loading More...

Phishing Protection

The Ecosystem of Phishing: From Minnows to Marlins

$1 for a cheap domain. $12.99 for 10m email contacts. Cybercriminals can launch phishing campaigns for under $20!

Beware of Phishers: New Research into the Ecosystem of Phishing

In this upcoming webinar, Harrison Van Riper and Alex Guirakhoo walk through the Ecosystem of Phishing. The team will cover New phishing data findings, How cybercriminals are crafting and distributing

Typosquatting and the 2020 U.S. Presidential election: Cyberspace as the new political battleground

we detected over 550 typosquats for the 34 candidate- and election-related domains we gathered from open-source research. Not every single one was something interesting; most of the time the typosquat

Combatting Domain-Centric Fraud: Why Mimecast is partnering with Digital Shadows

The Digital Shadows service continually identifies when new potentially impersonating domains emerge, and provides a risk score based on contextual information such as whether the domain is hosting...

The Complete Guide to Online Brand Protection

This blog will outline the top threats to brands we see online, and some of the best practices for protecting them.

Typosquatting and the 2020 U.S. Presidential election

Photon Research Team thought it would be interesting to use this pool of candidates as a backdrop for research into typosquatted domains

Enforcement: Mimecast Integration Datasheet

Digital Shadows integrates with Mimecast email security to proactively protect your employees from known domains posing a phishing risk, reducing the likelihood of successful phishing attacks.

Dark Web Typosquatting: Scammers v. Tor

Time and time again, we see how the cybercriminal ecosystem often mirrors what happens in the business world. This can ...

Domain Squatting: The Phisher-man’s Friend

Simon talks about how easy it is to conduct domain squatting and typosquatting, and how little monitoring still goes on around them in the industry.

How One Global Retailer Detected Almost 2,000 Spoof Domains | Case Study

See how one global retailer detected almost 2,000 domains impersonating their brand.

Typosquatting and the 2020 U.S. Election, Honeypots, And Sudo Vulnerability

Kacey, Charles, Harrison, and Alex kick off this week’s episode talking about our Fall Dallas team event (an amateur version of Chopped). Then we dig into the hot topics of the week.

Weekly Intelligence Summary 10 Oct - 17 Oct 2019

In the spotlight this week is the “Simjacker” exploit, publicly disclosed in September 2019 and now potentially affecting entities across 29 countries.

ANU Breach Report: Mapping to Mitre ATT&CK Framework

We decided to map this intrusion to the Mitre ATT&CK framework, as we have done previously for:

5 Ways Cybercriminals Can Access Your Emails Without Phishing

Here are 5 ways that cybercriminals gain access to emails without conducting a phishing campaign or network intrusion.

Phishing Site Impersonates Financial Services Institution

If the infamous bank robber, Willie Sutton, were alive today and honed his cyber skills, he might turn his attention ...

Tackling Phishing: The Most Popular Phishing Techniques and What You Can Do About It

We cover a range of the different techniques attackers of all persuasions (whether sophisticated nation state or low-level hacker) choose when performing their phishing campaigns.

Weekly Intelligence Summary 03 Oct - 10 Oct 2019

In the spotlight this week is the Iran-linked threat group “APT35”, which took aim at the email accounts of political entities in the United States and prominent Iranians living outside Iran.

Iran-Linked APT35, Skimming By Magecart 4, Rancour, And Emotet Resurgence

We’re back in London this week! Viktoria chats with Adam Cook, Philip Doherty, and Josh Poole on this week’s top stories. - APT35 Targets Email of US political figures & prominent Iranians -...

Dark Web Overdrive: The Criminal Marketplace Understood Through Cyberpunk Fiction

How can the modern network of .onion marketplaces be understood through novels about a cyberpunk dystopia? The answer is in how dark web marketplaces grow and die.

Texas Ransomware Outbreaks And Phishing Attacks Using Custom 404 Pages

Charles Ragland (a brand new ShadowTalk-er!) and Christian Rencken join Harrison this week to discuss an outbreak of ransomware attacks impacting local government entities across Texas. The team...