"Email Sender Identity is Key to Solving the Phishing Crisis"
There have been massive advancements in perimeter and endpoint defenses, but email remains a cybersecurity risk for many companies. Almost 90 percent of email attacks manipulate sender identity to fool recipients and initiate social engineering attacks. Phishing attacks are increasingly mutating quickly and continuously shift tactics and lures. Adversaries have learned how to get through email security at all three defensive layers currently in use by most organizations: the gateway, the mail client, and the end-user. For organizations to protect themselves from email attacks, companies need to start validating sender identities. For this to be effective, sender identity solutions will need to address all three types of identity-based attacks: open-signup attacks, untrusted-domain attacks, and domain-spoofing attacks.
Threatpost reports: "Email Sender Identity is Key to Solving the Phishing Crisis"