Hi [[ session.user.profile.firstName ]]

How FedEx, UPS & DHL Customers were Tricked by an Advanced Phishing Campaign.

File-borne attacks are on the rise, and 80% of successful breaches are new, unknown, or zero-day attacks that are not recognized by traditional signature-based detection solutions, such as antivirus. An example of this is an April 2020 attack that delivered Dridex ransomware to FedEx, UPS, and DHL customers. Sophisticated phishing emails—cleverly disguised to appear to be from company email accounts were sent with legitimate-looking attachments that delivered the payload. This threat's signature was not recognized in antivirus databases for 2 entire days, leaving businesses vulnerable.

In the past, detection and alert-based security tools were best-in-class. But in a world of zero-days and an overwhelming amount of attacks, these solutions miss massive quantities of threats—as much as 40%—leaving security teams fighting both alert fatigue and new threats from all fronts.

In this talk, Richard Hosgood, white hat hacker and North American Director of Engineering at file security company, Votiro, dissects the April 2020 phishing attack, the gaps that antivirus and next-generation antivirus leave for unknown and zero-day threats, and how an emerging technology called Positive Selection technology can actually prevent these types of attacks.
Recorded Jun 9 2020 44 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Richard Hosgood, North American Director of Engineering, Votiro
Presentation preview: How FedEx, UPS &  DHL Customers were Tricked by an Advanced Phishing Campaign.

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Preventing Hidden Malware in Emails - 4 Minute Demo Recorded: Jun 18 2021 5 mins
    Richard Hosgood, Director of Engineering, Votiro
    This 4 minute video shows how Votiro Secure File Gateway for Email protects from all malware embedded in incoming files.
  • 7 Lessons for CISOs from a Battle-tested, Ransomware Survivor Public Sector CIO Recorded: Jun 18 2021 56 mins
    Frank Johnson, Ransomware Survivor & Chris Fedde, Board Member at Votiro
    In this discussion-based panel event, Frank Johnson, battle-tested, ransomware survivor Public Sector CIO and Chris Fedde, Board Member of Votiro, will review lessons learned from Frank's experience dealing with a breach.

    Along with stories from inside the breach, this session will also explore how best to prioritize prevention with the modern day CISO's common obstacles, from the highly evasive nature of ransomware threats, to stretched budgets, to newly remote workforces.

    In this session:
    • Lessons learned during a ransomware event, including the CISO decision-making process in the aftermath of a breach;
    • Why the conventional advice on how to avoid ransomware breaks down;
    • Where to focus on reducing risk within your organization and your human attack surface;
    • Newer technologies available to prevent ransomware attacks, and recommended actions that security leaders should consider.
  • Federal Government: Revolutionizing Endpoint Security with Zero Trust Recorded: May 17 2021 41 mins
    Kirk Spring, Thales TCT Trusted Cyber Security Advisor & Richard Hosgood, Director of Engineering, Votiro
    As of March, 7 federal agencies are working from home. While teleworking keeps federal and civilian workers safe, it greatly increased cybersecurity risks.

    One of the major risks was through internet browsing. Malicious code easily hides within the browser, and browsers can change from safe to malicious in an instant, creating risk for any user surfing the web or clicking on links in emails.

    In September, DISA announced that it was rolling out cloud-based internet isolation to protect government and civilian employees from browser risks. By recreating the browser environment, malicious elements are contained, and the user gets to surf a perfectly replicated virtual version of the web…that is, until they try to download something.

    Downloading files used to breach the secure environment of browser isolation. A new technology called Positive Selection® works with browser isolation to ensure that all web downloads are fully sanitized of threats before they reach the endpoint.

    Join Thales TCT's Trusted Cyber Security Advisor, Kirk Spring and Votiro's Director of Engineering, Richard Hosgood to learn:
    o How Federal Agencies are implementing browser isolation to keep servicemembers and civilians safe from malicious browser elements
    o How Positive Selection allows browser isolation users to download content from the web without risk
  • No More Malware: How Financial Institutions can Stop File-Borne Attacks at Scale Recorded: Mar 25 2021 39 mins
    Richard Hosgood, Director of Engineering, Votiro
    Financial Institutions and Insurance companies are uniquely vulnerable to file-borne threats. Having to accept and process tens of thousands of files a day from multiple sources—emails, uploads to customer-facing online portals & apps, and downloads from the web—puts these entities at a unique risk.

    KYC, loan application documents, check image uploads, photo evidence and proof during the claims process - all files can be compromised with embedded, zero-day malware that is undetectable by detection-based and signature-based security solutions (and this doesn’t even include the massive volume of attachment-based phishing schemes that corporate office and billing receives).

    Join this informative webinar to learn:
    - The ways that attackers can implant malware into seemingly safe files commonly used during financial course of business, including zipped files, PDFs, Excel, and more
    - Dissection of a real attack on a financial instruction using files as the threat vector
    - The file security trends facing Financial Institutions & Insurance companies
    - How a new type of technology, Positive Selection, removes any and all hidden malware from files without interrupting business flow
  • "Don’t Surf, Don’t Click!” The Better Way to Access Websites and Download Files Recorded: Dec 16 2020 58 mins
    Sunil Choudrie, Product Strategy and Chris Newman, Product Manager, Symantec, Richard Hosgood, Dir. Engineering, Votiro
    Now, more than ever, you have to trust your workforce. To support remote teams, organizations are making greater use of web-based applications, systems, and content portals. But trust alone isn’t enough to keep employees—and the organization—safe. Webpages carry risk of malware delivered through browser exploits, and can flip from good to bad in an instant. Even if the page is good, the contents may carry risk (e.g. web email or social media). And that’s before we even think about weaponized files that users might download from the web!

    Telling your staff to not use the web or download files impacts both business productivity and morale. Instead, find out how they can safely browse the web and download files without risk of breach.

    Join this webinar to learn:
    • What webpage and file download risks you need to be most concerned about in 2021
    • How Symantec Web Isolation keeps users safe
    • The options available to design Isolation into your security system
    • How Votiro technology integrates with Symantec Isolation to sanitize file downloads
  • How FedEx, UPS & DHL Customers were Tricked by an Advanced Phishing Campaign. Recorded: Aug 31 2020 43 mins
    Richard Hosgood, North American Director of Engineering, Votiro
    File-borne attacks are on the rise, and 80% of successful breaches are new, unknown, or zero-day attacks that are not recognized by traditional signature-based detection solutions, such as antivirus. An example of this is an April 2020 attack that delivered Dridex ransomware to FedEx, UPS, and DHL customers. Sophisticated phishing emails—cleverly disguised to appear to be from company email accounts were sent with legitimate-looking attachments that delivered the payload. This threat's signature was not recognized in antivirus databases for 2 entire days, leaving businesses vulnerable.

    In the past, detection and alert-based security tools were best-in-class. But in a world of zero-days and an overwhelming amount of attacks, these solutions miss massive quantities of threats—as much as 40%—leaving security teams fighting both alert fatigue and new threats from all fronts.

    In this talk, Richard Hosgood, white hat hacker and North American Director of Engineering at file security company, Votiro, dissects the April 2020 phishing attack, the gaps that antivirus and next-generation antivirus leave for unknown and zero-day threats, and how an emerging technology called Positive Selection technology can actually prevent these types of attacks.
  • What's in that Malicious File? A Live File Dissection Event Recorded: Jul 21 2020 40 mins
    Richard Hosgood, White Hat Hacker & Director of Engineering, Votiro
    Organizations receive malicious files from emails, web uploads, and content-sharing platforms daily. File-borne attacks are on the rise and 40%-60% of malicious files evade and breach existing security defenses to end up in your inboxes, on your platforms, and in your network.

    We want you to send us those files. Seriously. Forward malicious files to badfiles@votiro.com.

    During this live hack dissection event on July 21st at 11am ET, Richard Hosgood, white hat hacker and North American Director of Engineering at file security company, Votiro, will dissect your malicious files live and uncover the malware and viruses that are hidden within.

    You will receive a completely clean, usable copy of your files back. Senders’ information will be kept confidential, and all files will be destroyed after the webinar.

    Richard will also discuss how a new technology – Positive Selection technology – ensures that all files entering an organization are 100% safe, regardless if they enter through email, download, or upload.

    Sign up for this webinar and send us your most malicious, most trojan-, ransomware-, and virus-riddled files to badfiles@votiro.com.
Webinars on file-borne threats for cybersecurity professionals.
Votiro

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: How FedEx, UPS & DHL Customers were Tricked by an Advanced Phishing Campaign.
  • Live at: Jun 9 2020 3:00 pm
  • Presented by: Richard Hosgood, North American Director of Engineering, Votiro
  • From:
Your email has been sent.
or close