Credential phishing leads to compromised accounts, providing attackers with a foothold inside the organization and putting the organization at risk for data loss or further attacks launched from within.
The framework that attackers use when launching email attacks starts with the Pretext. Credential phishing attacks commonly impersonate a known Brand. The email will commonly include a link to a URL that will capture the credentials entered by the victim. Many credential phishing attacks are delivered to end-users because the URLs do not contain any traditional threat signals such as malware.
Abnormal Behavior Technology (ABX) is Abnormal Security’s unique triangulation of Identity, Relationship and Content. Any single analysis may not lead to a high confidence decision, but ABX’s combination of the three pillars results in high precision and accurate identification of targeted email attacks.
Abnormal builds external entity profiles with dozens of attributes. Key email addresses used by brands are tracked by the Abnormal Identity Model.
Profiling of prior communications shows no prior observed communication between the sender address and the recipient.
Computer vision techniques analyze the URL page to identify brand logos, form fields, and containers.
Schedule a personalized product demo to see:
Threat analytics, insights and reporting Automated Triage, Investigation and response tools Platform integrations into SIEM, SOAR …and more
