Thank You!

Recent cyberattacks have disrupted major retailers like Marks & Spencer and Dior and led to emergency security patches from Microsoft and Google for actively exploited zero-day vulnerabilities. Meanwhile, a breach at the educational software provider PowerSchool has resulted in extortion threats against US school districts, highlighting the significant downstream risks of compromised SaaS platforms.

DMARC, DKIM, and SPF are becoming more necessary in today’s security ecosystem. Recent incidents, including Russian threat actors exploiting OAuth workflows for M365 access, a zero-day exploit on BreachForums, and significant ransomware attacks impacting Cobb County, Georgia, and Marks & Spencer, underscore the diverse and persistent nature of cyber threats.

Generative AI is fueling a rise in low-effort, high-volume email attacks, making phishing campaigns easier to launch than ever. PDF, Archive, and HTML files dominated as the preferred payload carriers. Meanwhile, DocuSign, DHL, and PayPal remained the top targets for brand impersonation scams.