Tag

Email Security

Comprehensive guides on protecting email accounts and infrastructure from cyber threats. Covers email authentication protocols like SPF, DKIM, and DMARC, encryption best practices, spam filtering, and organizational policies that reduce the risk of email-based attacks.

posts

Phishing Attack

Phishing Attack Trends in 2025: What Actually Works Now

A Single Phishing Attack Cost MGM Resorts $100 Million In September 2023, a threat actor called Scattered Spider impersonated an MGM Resorts employee during a help desk call. That single social engineering interaction led to a ransomware deployment that shut down slot machines, hotel key cards, and reservation systems across

Carl B. Johnson Dec 05, 2025 7 min read
Phishing News

Phishing News 2025: The Attacks Rewriting the Rules

A Single Phishing Email Cost One Company $60 Million In early 2025, Orion SA, a Luxembourg-based metals company, disclosed that a business email compromise (BEC) phishing attack had tricked employees into wiring approximately $60 million to attacker-controlled accounts. That's not a typo. One phishing campaign. Sixty million dollars.

Carl B. Johnson Nov 28, 2025 7 min read
Phishing Scams

Phishing Scams in 2025: What's Actually Working Now

The Phishing Email That Cost One Company $60 Million In January 2024, a finance employee at the engineering firm Arup wired $25 million after attending a video call with what appeared to be the company's CFO and other colleagues. Every person on that call was a deepfake. That

Carl B. Johnson Nov 28, 2025 7 min read
Fake Mailer

Fake Mailer Attacks: How Threat Actors Spoof Email

In January 2024, the FBI's Internet Crime Complaint Center reported that business email compromise — much of it powered by spoofed sender addresses — cost American organizations over $2.9 billion in 2023 alone. Behind a huge share of those losses sits a deceptively simple tool: the fake mailer. These

Carl B. Johnson Nov 06, 2025 6 min read
FBI Gmail Warning

FBI Gmail Warning: What You Need to Know in 2025

The FBI Gmail Alert That Should Have Changed How You Think About Email In late 2024, the FBI issued a stark warning: AI-driven phishing attacks targeting Gmail users had become so sophisticated that even technically savvy professionals were falling for them. The advisory wasn't hypothetical. It was based

Carl B. Johnson Nov 06, 2025 7 min read
Phishing Emails

How Phishing Emails Work: The Psychology Behind the Click

In March 2025, a finance director at a mid-sized manufacturing company wired $2.3 million to a bank account in Southeast Asia. The request came from what looked like the CEO's email — same signature, same tone, same thread about an acquisition they'd been discussing for weeks.

Carl B. Johnson Sep 27, 2025 8 min read
Phishing Email

How to Recognize a Phishing Email Before You Click

The Email That Cost One Company $37 Million In 2024, the FBI's Internet Crime Complaint Center reported that phishing and its variants remained the number one reported cybercrime by volume, with over 298,000 complaints in a single year. But here's the part that should keep

Carl B. Johnson Sep 25, 2025 8 min read
Phishing Attack Examples

Phishing Attack Examples: 7 Real Breaches That Cost Millions

In March 2025, the FBI's Internet Crime Complaint Center reported that phishing remained the number one reported cybercrime for the fifth consecutive year. That stat alone should tell you everything about where threat actors are focusing their energy. But raw numbers don't teach your employees what

Carl B. Johnson Sep 22, 2025 7 min read
Phishing

What Is Phishing? A Security Pro's Real-World Guide

The Attack That Cost MGM Resorts $100 Million Started With a Phone Call In September 2023, a threat actor called the MGM Resorts IT help desk, impersonated an employee they found on LinkedIn, and talked their way into a password reset. Within hours, the attackers had deployed ransomware across MGM&

Carl B. Johnson Sep 22, 2025 7 min read