
Compromised Account (Critical Anomaly) Incident for Phishing Emails Sent by Protected Users

By
A Critical Anomaly indicating a compromised account is now generated when protected users send internal or outgoing phishing/spam emails.
Detecting compromised accounts is key to prevent extensive damage to organizations.
A strong indicator for a compromised account are phishing/spam emails sent from this account to other internal users or external parties.
When Harmony Email & Collaboration detects such emails, it now does not only quarantine them, but also generates a compromised account (Critical Anomaly) event.
Administrators are then alerted and can act fast to prevent any damage from this user.
You may also like
Is Firebase Phishing a Threat to Your Organization?
Check Point researchers have uncovered a sophisticated credential harvesting attack ...
How hunting for vulnerable drivers unraveled a widespread attack
Attackers are increasingly targeting vulnerabilities in drivers, which operate in ...
Cyber Criminals Using URL Tricks to Deceive Users
Overview: In a newly observed scam, Check Point researchers found ...
Check Point’s SASE Tops Scores for Threat Prevention
Known malware is dangerous, but the real risk lies in ...