Skip to content
SPECIAL

THREATS TO CRITICAL INFRASTRUCTURE IN IRAN CONFLICT

READ MORE

Advanced security isn’t stopping ancient phishing tactics

(Kasia Derenda / Unsplash)

By Kristina Beek

Phishing is nothing new when it comes to cybersecurity threats, constantly putting users and organizations at risk of compromising sensitive information. But a new study has uncovered alarming insights about the persistent nature of phishing attacks against enterprises in particular, revealing how even some of the most mature companies with the most advanced security systems continue to remain vulnerable — and why phishing attacks aren’t going away anytime soon.

The research, which will be showcased at Black Hat Europe in early December, used failed phishing-resistant authentication attempts as high-fidelity signals to catch malicious activity. Over a 26-month period, the researchers at Okta used FastPass authentication logs to examine authentication attempts across multiple customer organizations using three key approaches: expert security analyst review, grounded large language model (LLM) classification, and customer validation.

The findings revealed that many existing enterprise security layers such as email gateways, endpoint protection, and human training programs aren’t up to par by themselves.

Read more at Dark Reading

Click to listen highlighted text!