StrongestLayer spent the week underscoring how AI is reshaping phishing economics and exposing gaps in traditional email and identity security. CEO Alan LeFort’s TechRadar commentary likened modern phishing to high‑quality counterfeits that rely on legitimate infrastructure, with the “fake” element confined to attacker intent.
Meet Samuel – Your Personal Investing Prophet
- Start a conversation with TipRanks’ trusted, data-backed investment intelligence
- Ask Samuel about stocks, your portfolio, or the market and get instant, personalized insights in seconds
The company highlighted data suggesting AI‑driven spear‑phishing can achieve a 54% click rate at an estimated cost of $0.04 per attack, implying a 50x jump in attacker profitability. StrongestLayer also noted that typical campaigns now chain four or more evasion techniques, bringing nation‑state‑level sophistication within reach of average threat actors.
In parallel, StrongestLayer drew attention to Adversary‑in‑the‑Middle phishing that can bypass multi‑factor authentication by proxying legitimate login pages and stealing session cookies. The firm cited reports of more than 10,000 organizations impacted, arguing that secure email gateways and sandboxing often miss these attacks because messages appear benign and automated analysis is thwarted.
Management positioned these trends as evidence of rising demand for advanced identity and session‑layer defenses, particularly in Microsoft‑centric environments with complex authentication workflows. Internal data showed that 56.8% of attacks bypassing secure email gateways use four or more evasive techniques and that 35.9% shift the malicious step off email entirely.
StrongestLayer said this pattern validates behavior‑ and workflow‑aware security that models payment approvals, CFO behavior, and vendor invoicing rather than relying on content alone. The company maintained that AI‑enabled attack tools, including those referenced in Anthropic’s Project Glasswing and Mythos, do not require a major shift in its architecture‑first product roadmap.
To bolster its market positioning and thought leadership, StrongestLayer launched a podcast called “The Reasoning,” hosted by LeFort and CCO Karen L. The first episode examined the 12–14 month cadence of AI capability shifts, attacker‑defender asymmetry, and key questions CISOs should ask vendors as they reassess risk models.
While no new financial metrics or customer wins were disclosed, the week’s communications reinforced StrongestLayer’s focus on AI‑driven, multi‑vector and MFA‑bypassing threats. Taken together, the developments aim to position the firm as a specialized provider at the intersection of email, identity and AI‑era cybersecurity challenges.