90% of cyberattacks begin with phishing, creating escalating risks of credential theft and financial damage. ANY.RUN has deployed SSL decryption technology across all subscription tiers of its Interactive Sandbox to counter this threat. The system extracts encryption keys directly from process memory, enabling detection of phishing attempts that would otherwise be hidden by encryption. This capability enhances threat visibility for individual users and SOC teams, improving their ability to identify and respond to phishing-based compromises in sandboxed analysis.