Mimecast threat intelligence report analyzes 99 billion rejected emails

PHOTO

Dubai, UAE: Mimecast Limited (NASDAQ: MIME), a leading email and data security company, today announced the availability of its quarterly Threat Intelligence Report: Risk and Resilience Insights. The report provides technical analysis from the Mimecast Threat Center from July -September 2019 on the nature of attack campaigns in addition to observations and analysis of evolving threats. Outlining the trends emerging from these identified attacks and assessing the current behavior of threat actors can help organizations better understand the impact these factors will have on the cybersecurity landscape in 2020.

The Mimecast Threat Intelligence Report includes analysis of 207 billion emails processed by Mimecast, 99 billion of which were rejected. The report keeps organizations informed on the threats that are targeting their industries, so they can better prepare for, and protect themselves against threats inside, at and beyond the perimeter. This research looks through the lens of the four main categories of attack types discovered in the quarter: spam, impersonation, opportunistic, and targeted. This quarter’s report found that impersonation attacks are on this rise, accounting for 26% of total detections – and now includes voice phishing or “vishing,” an advanced attack observed in this quarter, where threat actors use social engineering to gain access to personal and financial information via the victim’s telephone system.

While the report uncovered a mixture of simple, low effort and low-cost attacks targeting Mimecast customers, the data highlights complex, targeted campaigns leveraging a variety of vectors and lasting several days. These sophisticated attacks are likely carried out by organized and determined threat actors, employing obfuscation, layering, exploits, and encryption to evade detection. Additionally, throughout the research, it was clear three industries were targeted the most by cyberattacks. Banking and legal, industries that are rich with sensitive information that yield results for threat actors and transportation, where state-sponsored threat actors seek to disrupt the logistical and supply capability of rivals.

“Threat actors seek numerous ways into an organization - from using sophisticated tactics, like voice phishing and domain spoofing, to simple attacks like spam,” said Josh Douglas, vice president of threat intelligence at Mimecast. “This quarter’s research found that the majority of threats were simple, sheer volume attacks. Easy to execute, but not as easy to protect against as it shines a very bright light on the role human error could play in an organization’s vulnerability. Organizations need to take a pervasive approach to email security - one that integrates the right security tools allowing for greater visibility at, in and beyond the perimeter. This approach also requires educating the last line of defense – employees. Coupling technology with a force of well-trained human eyes will help organizations strengthen their security postures to defend against both simple and sophisticated threats.”

Of the 207 billion emails processed, there were 25 significant malware campaigns identified this quarter which incorporated Azorult, Hawkeye, Nanocore, Netwired, Lokibot, Locky and Remcos. The campaigns observed range from simple phishing campaigns to multi-vector campaigns alternating file types and attack vector, types of malware and vulnerabilities. All the analysis discovered in the report is fed back into Mimecast engineering to enhance cloud-based security services, improving customer’s cyber resilience and helping them avoid disruptions to their business

Additional key findings outlined in the report –

The majority of attacks are less sophisticated, high volume attacks – due to the ease of access for any individual to launch an attack and employees still clicking on malicious links
ZIP files accounted for 34% of file compression format attacks – consistently the most detected format due to reliance on human error
Researchers detected a complex range of malware, some of which has been around for many years, in addition to new threats. Malware threats are increasingly automated.
Top sectors targeted this quarter: transportation, storage and delivery, banking and legal

About Mimecast

Mimecast is a cybersecurity and compliance provider that helps thousands of organizations worldwide make email safer, restore trust and bolster cyber resilience. Mimecast’s expanded cloud suite enables organizations to implement a comprehensive cyber resilience strategy. From email and web security, archive and data protection, to awareness training, uptime assurance and more, Mimecast helps organizations stand strong in the face of cyberattacks, human error and technical failure. www.mimecast.com

Mimecast is either a registered trademark or trademark of Mimecast Services Limited in the United States and/or other countries. All other products and/or services referenced are trademarks of their respective companies.

Blog: Cyber Resilience Insights

Press Contact

Sharon Divan
OAK Consulting FZ LLC
+971 50 8444823
sharon@oakconsulting.biz

Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.

The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.

To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.

Mimecast threat intelligence report analyzes 99 billion rejected emails

RELATED ARTICLES

Bank Nizwa appoints Deputy Chief Executive Officer - Chief Operations Officer

Jewel of Saudi 2025 set to take place in Jeddah

ADIO and SIEF forge partnership to attract global investors and businesses to Abu Dhabi

MEPRA Awards 2025 announces winners, honors best campaigns, practitioners and agencies of the year

British Council launches new UAE initiative to champion women leaders in education

ADIO and Primavera Capital partner to attract high-growth companies to Abu Dhabi

UAE Government issues a Federal Decree-Law amending certain provisions of the Crimes and Penalties Law

Tanishq returns to Meena Bazaar with its biggest, boldest flagship, powering a new era of GCC growth

ZAWYA COVERAGE

VIDEO: Saudi firms sign deals to build oil fields, boost output in Syria

Goldman Sachs opens Middle East headquarters in Saudi Arabia

Saudi firms sign deals to build oil fields, boost output in Syria

Ratings upgrades spark optimism in Oman’s debt market, but challenges remain

UAE's ADIO targets China capital markets via new investment corridor

Abu Dhabi wealth fund Mubadala to double Asia exposure to 25% of portfolio

Abu Dhabi's Mubadala Capital explores digital access to private market investments

Saudi’s Purity for Info Tech renews $2.66mln financing with GIB

Saudi’s Perfect Presentation renews $35.9mln banking facility

Parking Regulation begins in the commercial sectors of Mohamed Bin Zayed City

45 MoUs valued at SAR 6bln signed at MOMENTUM 2025 to power Saudi Arabia’s sustainable development

ADNOC Distribution adopts AE Coin payments across its retail network

The Middle East’s most expensive penthouse at Bugatti Residences by Binghatti sold for 550mln

MEPRA Awards 2025 announces winners, honors best campaigns, practitioners and agencies of the year

LATEST VIDEO

VIDEO: Saudi firms sign deals to build oil fields, boost output in Syria

ZAWYA COVERAGE

VIDEO: Saudi firms sign deals to build oil fields, boost output in Syria

Goldman Sachs opens Middle East headquarters in Saudi Arabia

Saudi firms sign deals to build oil fields, boost output in Syria

Ratings upgrades spark optimism in Oman’s debt market, but challenges remain

CBUAE, National Anti-Narcotics Authority strengthen cooperation to combat narcotics-related financial crime

Abu Dhabi Investment Office partners with Bain Capital

UAE Government issues Federal Decree-Law amending certain provisions of Crimes and Penalties Law

Gold hits seven-week high on safe-haven demand; silver notches peak

Mideast Stocks: UAE stocks ease as oil slips, profit-taking caps Dubai rally

THE BRI REPORT

China’s flagship global infrastructure initiative is changing in the face of potent headwinds

ZAWYA NEWSLETTERS

RELATED ARTICLES

ZAWYA NEWSLETTERS

LATEST VIDEO