Marcus Chen

Articles by Marcus Chen

Reviewing employee-reported emails
Threat IntelligenceProduct Updates

Reported Email Review: Turning Employees Into Sensors

When employees report suspicious emails through the empowsec Outlook or Gmail add-in, those reports land in an admin review queue where security teams can classify each one and build real threat intelligence from what is actually reaching inboxes.

Marcus Chen·7/5/2026·8 min read
Reporting a phishing email from Outlook
Phishing & Social EngineeringProduct Updates

Report Phishing from Outlook: The empowsec Add-In Guide

empowsec's Outlook add-in gives employees a one-click 'Report phishing' button in their inbox - capturing email headers and content for review while instantly rewarding employees who correctly identify a simulation.

Marcus Chen·7/3/2026·8 min read
An employee risk score profile
Security Awareness TipsProduct Updates

How the empowsec Employee Risk Scoring Engine Works

empowsec's risk scoring engine assigns weighted points to every phishing and training event, applies time decay so recent behavior matters most, and rolls scores up to department and company level so you can target help where it is actually needed.

Marcus Chen·6/29/2026·8 min read
Employee reviewing an application permission request on a laptop screen
Phishing & Social EngineeringThreat Intelligence

Consent Phishing: Malicious OAuth Apps That Bypass MFA

Consent phishing tricks users into approving a malicious OAuth app — granting attackers token-based access to mail and files without ever touching a password or triggering MFA. Here is how it works and how to shut it down.

Marcus Chen·6/23/2026·6 min read
A simulated phishing landing page used for training
Phishing & Social EngineeringProduct Updates

Phishing Landing Pages, Credential Capture, and Tracking

empowsec tracks every step of a simulated phishing attack - from the pixel that records an open to the fake login form that records a credential submission - and turns each event into a learning opportunity.

Marcus Chen·6/13/2026·7 min read
Football fans filling a packed stadium during a major tournament match
Phishing & Social EngineeringThreat Intelligence

FIFA World Cup 2026 Ticket Scams Hit the Workplace

The FBI is warning fans that criminals are spoofing FIFA's ticketing site ahead of the 2026 World Cup. Here is why event-themed lures land in employee inboxes and how to train your team to spot them.

Marcus Chen·6/7/2026·7 min read
« Previous12Next »