Fortra researchers have uncovered an evolution in social engineering that creates entirely fabricated email conversations mimicking internal communications and workflows – believed to be the work of AI. These attacks are targeting employees with fraudulent invoices and are capable of bypassing signature detection, URL filtering, and sandboxing completely.
Key highlights:
- Unlike email thread hijacking, attackers are presumed to be using AI to generate 100% fabricated threads generated from information gathered on the open web.
- These attacks exploit the gap between technical filters and human judgment, circumventing controls and leaving no technical footprint for security tools to analyze.
The report can be accessed here: When Yesterday’s Emails Never Happened: The Conversation Hijacking Attack | Fortra
Like this:
Like Loading...
Related
This entry was posted on June 17, 2025 at 9:38 am and is filed under Commentary with tags Fortra. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Cybercriminals Using AI to Bypass Security Controls in New Attack Methodology Says Fortra
Fortra researchers have uncovered an evolution in social engineering that creates entirely fabricated email conversations mimicking internal communications and workflows – believed to be the work of AI. These attacks are targeting employees with fraudulent invoices and are capable of bypassing signature detection, URL filtering, and sandboxing completely.
Key highlights:
The report can be accessed here: When Yesterday’s Emails Never Happened: The Conversation Hijacking Attack | Fortra
Share this:
Like this:
Related
This entry was posted on June 17, 2025 at 9:38 am and is filed under Commentary with tags Fortra. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.