Attack Spotlight

Gain insights into the anatomy of email attacks with expert breakdowns and prevention strategies.

Get the latest news

Subscribe now to get the latest post delivered straight to your inbox.

You're now subscribed. Expect a monthly email from us in your inbox.

Oops! Something went wrong while submitting the form.

Attack Spotlight

Mar 13, 2025

Post thumbnail

Seeing both sides of a service abuse financial fraud using YOPmail disposable messages

Callback phishing attack abusing Adobe Creative Cloud, Microsoft 365, and YOPmail

Josh "Soup" Campbell

Detection

Attack Spotlight

Mar 6, 2025

Post thumbnail

Base64-encoding an SVG attack within an iframe and hiding it all in an EML attachment

Credential phishing with nested attachments and a base64-encoded attack within an iframe

Sam Scholten

Detection

Attack Spotlight

Feb 25, 2025

Post thumbnail

Scripting Vector Grifts: SVG phishing with smuggled JS and adversary in the middle tactics

Embedding malicious JS code within SVGs to deliver adversary in the middle credential phishing attacks.

Brandon Murphy

Detection

Attack Spotlight

Feb 18, 2025

Post thumbnail

Tax season email attacks: AdWind RATs and Tycoon 2FA phishing kits

Bad actors will try to blend their attacks in with other tax time emails in order to evade detection. These are some of the tactics we’ve already seen this year.

Brandon Webster

Detection

Attack Spotlight

Jan 29, 2025

Post thumbnail

Credential phishing Charles Schwab account holders with 2FA bypass

Credential phishing attempt impersonating Charles Schwab to steal login credentials and two-factor code.

Aiden Mitchell

Detection

Attack Spotlight

Jan 7, 2025

Post thumbnail

Hiding a $50,000 BEC financial fraud in a fake email thread

Business entity compromise (BEC) financial fraud using a fake email thread, invoice, and W-9.

Sam Scholten

Detection

Now is the time.

Experience Sublime’s adaptable email security platform and take control of your email environment today.