In this DMARC adoption study, we analyzed parent domains in Japan’s higher education landscape and the challenges IT teams face in securing their domains ...

Writing my own virtualized loader is something I’ve been wanting to do since I first read Microsoft’s deep dive on FinFisher’s multi-layered VM obfuscation back in 2018. FinFisher didn’t just use one layer of ...

In this article, our Service Delivery Specialist Steven Iacoviello discusses how criminals are targeting dangling CNAMES and DNS entry errors to hijack domains for phishing exploits.    In our daily work of helping ...

A CNAME (Canonical Name) record is a Domain Name System (DNS) record that makes one DNS name an alias of another DNS name ...

During the review of your domain’s DMARC data, you may come across something puzzling: large numbers of emails sent on behalf of your domains from IPs that resolve to *.cloud-sec-av.com. Ash, our ...

The Federal Bureau of Investigation’s Internet Crime Complaint Center released the 2025 Internet Crime Report, documenting internet crimes reported last year ...

We understand the problem. So why does it keep showing up? Recent discussions across the European cybersecurity community reflect a growing confidence in how well the threat landscape is understood ...

TL;DR: Single-page applications ship their entire frontend codebase to every visitor, including unauthenticated ones. Even a login page with no visible functionality delivers JavaScript bundles containing route definitions, API endpoint URLs, authentication ...

We’ve hand-selected the most relevant error codes that may arise from Google and Yahoo’s sender requirements or other email authentication failures (SPF/DKIM/DMARC) ...

Japan’s regulatory environment is rapidly evolving to meet the realities of email-based threats. Through DMARC, Japanese domain owners can demonstrate compliance with data protection laws and phishing-reduction policies to strengthen trust.  ...