HealthcareCISO

Nearly half of all advanced phishing attempts, such as spear-phishing and social engineering attacks, bypass leading secure email gateways (SEGs), as hackers shift into more advanced schemes that prey on human nature, according to new research from IRONSCALES.

Researchers employed IRONSCALES Emulator, a breach and attack simulation tool, to assess the effectiveness of Microsoft ATP and other leading SEGs in stopping advanced email threats.

IRONSCALES simulated real-world phishing attacks to test technical controls and review gaps in clients’ email security infrastructure, in an effort to address the shifting threat landscape as the majority of phishing emails do not contain malware via links or attachments.

Instead, most phishing emails leverage social engineering techniques, including...