Email Gateway

Attack Vector

Cymulate’s Email Gateway vector helps you to test your corporate email security.

Email is the most frequently used method of attack for exploiting security weaknesses and compromising corporate environments. Research shows that over 75% of cyberattacks worldwide originate from a malicious email, and the number of those targeted attacks keep increasing. As we have seen in the past, both very high-profile cyber campaigns as well as less known ones, are launched with an email containing a malicious attachment or link for infecting victims with ransomware or opening a direct connection to the Command & Control (C&C) servers of hackers.

For example, a recurring DHL phishing template is making the rounds, which is sent almost on a monthly basis for the past year spreading different payloads such as Tesla, Panda, etc. One recent example of this method used a DHL themed shipment invoice sent by email, notifying its victims that there is a new shipment waiting for them. In order to print out the package details, the victim is required to click on a link within the email’s body. That link, in reality, hides a malicious DOC file containing a link to the attacker’s C&C. After clicking on that link, a destructive malware is sent from the attacker’s C&C to the victim’s endpoint, thus compromising it, and in some cases even compromising the whole organization.

Major companies, government agencies, and political organizations have been (and will be) the target of such attacks in the future. The more sensitive the information that an organization handles, the higher the chance of becoming a target. Furthermore, this attack method is also used for direct attacks on specific organizations and even for sporadic global attacks trying to reach as many unwary individuals as possible.

Learn more about Other vectors