Terry KS Coremail warns that increasingly advanced social engineering attacks are reshaping enterprise email security risks. The company advocates for AI-powered defenses combined with governance and employee awareness to build stronger cyber resilience
THAILAND, 11 MARCH 2026 – As social engineering attacks become more advanced, enterprises are facing growing cybersecurity risks, particularly through email channels that remain a primary entry point for breaches. Coremail, an email technology provider with more than 27 years of experience in email security, has outlined emerging threat trends and the need for organizations to adopt more intelligent and structured security architectures.
According to Tim Lin, Chief Technology Officer at Coremail, the rapid advancement of generative artificial intelligence is accelerating the sophistication of social engineering attacks. This evolution is forcing enterprises to rethink traditional security approaches and adopt multi-layered defense frameworks that combine AI-driven detection with governance and organizational awareness.
One key area of transformation is the email security gateway, which traditionally relied on rule-based and signature-based detection systems. While effective against known threats, these conventional systems often struggle to detect evolving attacks such as identity spoofing and Business Email Compromise (BEC).
To address these challenges, Coremail has introduced an AI-powered email security solution through its CACTER Secure Email Gateway. The system integrates large language models and multimodal analysis to identify suspicious patterns and behaviors that may not be captured by traditional filters.
By leveraging advanced AI techniques such as deep semantic analysis, zero-shot threat detection and attacker profiling, the gateway is designed to detect and block phishing attempts, spam, malware and covert BEC attacks. The platform also performs dynamic URL inspection to prevent malicious links from reaching users and uses multimodal analysis to identify previously unknown or variant threats.
The gateway is built on a full lifecycle security architecture that continuously filters, monitors and analyzes email activity. According to internal testing results shared by the company, the system is capable of blocking up to 99.8 percent of spam while maintaining a false positive rate below 0.02 percent, allowing organizations to enhance security without disrupting legitimate communications.
However, technical defenses alone are not sufficient to mitigate cyber threats. Human error continues to play a significant role in security incidents, particularly when attackers impersonate executives or trusted colleagues to manipulate employees into transferring funds or disclosing sensitive information.
To reduce this risk, Coremail recommends that organizations conduct continuous anti-phishing drills rather than relying solely on periodic training sessions. Scenario-based simulations allow employees to experience realistic attack situations and develop stronger awareness of suspicious requests.
Coremail’s CACTER anti-phishing simulation service enables organizations to create customized training scenarios that replicate real-world threats. Through repeated simulations and feedback, employees become more adept at recognizing deceptive tactics used in social engineering attacks, reducing the likelihood of mistakes that could lead to security breaches.
Beyond technology and employee training, the company emphasizes the importance of strong governance frameworks. Organizations are encouraged to implement the principle of least privilege, ensuring that users only have access to the systems and data necessary for their roles. Strengthening access controls and deploying multi-factor authentication can also help prevent account misuse and unauthorized access.
Regular cybersecurity training, clear compliance responsibilities and continuous monitoring further help embed security awareness into daily business operations. These practices support a shift from reactive incident response to proactive risk prevention.
As cyber threats increasingly combine technical exploits with human manipulation, enterprises must adopt comprehensive defense strategies that address both technological vulnerabilities and organizational behavior. Coremail believes that integrating AI-driven email security gateways with employee preparedness and stronger governance can provide organizations with the resilience needed to defend against modern cyber threats.