Resilient Cyber

Resilient Cyber w/ Mick Leach - 5 Email Threats to Watch For in 2025

Jan 21, 2025

Mick Leach, Field CISO at Abnormal Security and an expert in email security, dives into the rising threats facing organizations. He highlights the evolving landscape of email attacks, particularly those fueled by AI, which make traditional defenses less effective. Cryptocurrency fraud and AI-generated phishing tactics are just the tip of the iceberg. Mick emphasizes the need for advanced training and AI-driven solutions to bolster defenses against these sophisticated threats, while discussing the operational risks of email account takeovers.

31:30

Episode guests

Mick Leach

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Cybercriminals are evolving their tactics by leveraging generative AI in email phishing, making traditional security measures increasingly inadequate.

The rise of cryptocurrency scams highlights the need for organizations to educate employees about emerging fraud tactics and threat awareness.

Deep dives

The Evolution of Cyber Criminal Tactics

Cyber criminals are increasingly leveraging advanced technology to evolve their attack methods, particularly in email-centric phishing schemes. The rise of generative AI tools has improved the sophistication and effectiveness of these attacks, making them as convincing as high-quality, human-crafted phishing messages. Tactics such as QR code phishing and file sharing phishing are on the rise, complicating detection efforts for organizations. As attackers shift towards social engineering techniques that initiate conversations rather than relying solely on malicious links, the need for robust human-centric security approaches becomes paramount.

Intro

2min

Evolving Cyber Threats and Human Vulnerabilities

10min

Evolving Threats: The Impact of AI on Email Security

1min

The Hidden Costs of Email Account Takeover

3min

AI in Cybersecurity: Combatting Evolving Threats

15min

While cybercriminals can (and do) infiltrate organizations by exploiting software vulnerabilities and launching brute force attacks, the most direct—and often the most effective—route is via the inbox. As the front door of an enterprise and the gateway upon which employees rely to do their jobs, the inbox represents an ideal access point for attackers.

And it seems that, unfortunately, cybercriminals aren’t lacking when it comes to identifying new ways to sneak in. Abnormal Security’s Field CISO, Mick Leach, will discuss some of the sophisticated threats we anticipate escalating in the coming year—including cryptocurrency fraud, AI-generated business email compromise, and more.

Mick and I dove into a lot of great topics, including:

The evolution of email based attacks and why traditional tooling may fall short
How attackers are leveraging GenAI and LLM’s to make more compelling email-based attacks
How defenders can utilize AI to improve their defensive capabilities
The role of tooling such as Secure Email Gateways and more, and how they still play a role but fail to meet the latest threat landscape
How Abnormal is tacking email-based attacks and the outcomes they are helping customers achieve with streamlined integration and use

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Resilient Cyber

Resilient Cyber w/ Mick Leach - 5 Email Threats to Watch For in 2025

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Evolution of Cyber Criminal Tactics

Impact of Cryptocurrency on Fraud

Challenges of Multi-Channel Phishing Attacks

Leveraging AI for Enhanced Security

Remember Everything You Learn from Podcasts