KnowBe4 has announced its new Threat Labs to mitigate human-targeted cybersecurity attacks. This initiative specializes in researching and mitigating email threats and phishing attacks, using a combination of expert analysis and crowdsourced intelligence. The cybersecurity researchers and analysts behind KnowBe4 Threat Labs discover and investigate the latest phishing techniques and develop strategies to preemptively combat these threats.
“KnowBe4 Threat Labs is a momentous step forward in providing actionable intelligence on emerging cyber risks related to human risk management,” said Dr. Martin Kraemer, security awareness advocate, KnowBe4. “This intelligence is based on continuous monitoring and in-depth investigations of the global threat landscape.”
The first publication from KnowBe4 Threat Labs, Using Genuine Business Domains to Harvest Credentials, analyzes a sophisticated phishing campaign targeting multiple organizations to harvest Microsoft credentials. During this campaign, threat actors utilized a compromised domain, its subdomains, bulk email services, and open redirect vulnerability to evade detection and increase click success rates.
“KnowBe4 Threat Labs will specialize in topic areas related to social engineering, phishing and human-factor security,” said Jack Chapman, head of threat intelligence, Egress, a KnowBe4 company. “It will help to empower organizations to strengthen their security posture through cutting-edge research and timely threat analysis.”
