Security News > 2020 > December > How cyber-attackers are coming after you in 2021
Attackers will often launch secondary strikes by sending phishing emails from hijacked inboxes.
Who wouldn't trust an email that came from a trusted colleague's account? This phase enables attackers to steal still more credentials from other victims, plant ransomware, or launch an especially convincing BEC attack.
In phishing's early days, large-scale attackers were a spray-and-pray affair, but attackers are refining their techniques, using the same tools and techniques that professional email marketers use to increase email open rates.
In one recent email attack that Darktrace saw, a phishing email slipped past Mimecast's email security gateway undetected.
AI maintains an up-to-date picture of how people normally communicate by continually monitoring and learning from new emails.
News URL
https://go.theregister.com/feed/www.theregister.com/2020/12/17/attackers_are_coming_in_2021/