Email security

Researchers say they’ve seen continued reports of these automated email campaigns on the DocuSign community forums for the past five months.

The old tools won’t stop the attackers today – that’s why security teams have to lean on AI-powered threat detection.

Attackers targeted a government organization in a country part of the Commonwealth of Independent States with an email containing a concealed attached document and distinct tags within its body that facilitate arbitrary JavaScript execution.

Malicious emails alerting of state-sponsored intrusions have been sent to lure organizations' cybersecurity teams into downloading the fraudulent "ESET Unleashed program," which features several ESET DLLs and would enable file and data deletion upon execution.

By combining AI-powered tools with human intelligence, organizations can mitigate the rising email security gap.

Threat actors step up BEC attacks that rely on sophisticated evasion techniques that result in financial fraud, data loss, and lateral movement.

Utilizing a large language model interface, the tool translates complex cybersecurity issues into user-friendly, natural language conversations for both technical and nontechnical users, enabling teams to identify vulnerabilities and proactively address them, even without possessing extensive training or expertise.

Such a development comes after the vulnerability was discovered by Proofpoint to be leveraged in intrusions beginning September 28, following the release of its proof-of-concept exploit code and technical information by Project Discovery.