email security

Microsoft 365 Direct Send Abused for Phishing

Direct Send, email security, Microsoft 365, phishing /

Microsoft 365 Direct Send Abused for Phishing 2025-06-27 at 11:08 By Ionut Arghire Hackers are abusing the Microsoft 365 Direct Send feature to deliver phishing emails that bypass email security controls. The post Microsoft 365 Direct Send Abused for Phishing appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React […]

React to this headline:

Loading spinner

Microsoft 365 Direct Send Abused for Phishing Read More »

Russian Hackers Bypass Gmail MFA with App Specific Password Ruse

app-specific passwords, APT29, Citizen Lab, email security, Gmail, Google, Identity & Access, Nation-State, Russia /

Russian Hackers Bypass Gmail MFA with App Specific Password Ruse 2025-06-18 at 22:01 By Ryan Naraine Russian hackers posed as US State Department staff and convinced targets to generate and give up Google app-specific passwords. The post Russian Hackers Bypass Gmail MFA with App Specific Password Ruse appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Russian Hackers Bypass Gmail MFA with App Specific Password Ruse Read More »

11 Reasons Why MailMarshal is the Email Security You Need

email security, Tips & Tricks /

11 Reasons Why MailMarshal is the Email Security You Need 2025-06-18 at 19:20 By Email remains the primary communication tool for businesses of all sizes. Unfortunately, threat actors are experts at evading secure email gateways, making email the most exploited entry point for cybercriminals. Recent history is littered with examples of devastating attacks that started with a

React to this headline:

Loading spinner

11 Reasons Why MailMarshal is the Email Security You Need Read More »

Email security risks healthcare IT can’t afford to ignore

cybersecurity, email security, healthcare, News, Paubox, report /

Email security risks healthcare IT can’t afford to ignore 2025-06-12 at 07:32 By Help Net Security 92% of healthcare IT leaders say they’re confident in their ability to prevent email-based data breaches, but according to Paubox, they’re not. Healthcare compliance confidence gap Email remains one of the biggest security risks in healthcare. Outdated systems and

React to this headline:

Loading spinner

Email security risks healthcare IT can’t afford to ignore Read More »

Exploited Vulnerability Impacts Over 80,000 Roundcube Servers

email security, exploited, Roundcube, vulnerability /

Exploited Vulnerability Impacts Over 80,000 Roundcube Servers 2025-06-10 at 12:49 By Ionut Arghire Exploitation of a critical-severity RCE vulnerability in Roundcube started only days after a patch was released. The post Exploited Vulnerability Impacts Over 80,000 Roundcube Servers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Exploited Vulnerability Impacts Over 80,000 Roundcube Servers Read More »

Employees repeatedly fall for vendor email compromise attacks

Abnormal AI, Email, email security, News, report, survey /

Employees repeatedly fall for vendor email compromise attacks 2025-06-09 at 07:02 By Help Net Security In just 12 months, attackers attempted to steal more than $300 million via vendor email compromise (VEC), with 7% of engagements coming from employees who had engaged with a previous attack, according to Abnormal AI. Vendor email compromise risks increase

React to this headline:

Loading spinner

Employees repeatedly fall for vendor email compromise attacks Read More »

Phishing-as-a-Service (PhaaS): A Cybercrime Subscription Service

email security, Emerging Threats /

Phishing-as-a-Service (PhaaS): A Cybercrime Subscription Service 2025-06-04 at 16:02 By Phishing-as-a-Service (PhaaS) is skyrocketing, making sophisticated phishing attacks accessible to all cybercriminals. Learn how this “subscription model” for cybercrime fuels a dramatic rise in threats. Combat PhaaS with a robust email security strategy, including layered defenses and a secure email gateway. Discover essential protocols to protect

React to this headline:

Loading spinner

Phishing-as-a-Service (PhaaS): A Cybercrime Subscription Service Read More »

Trustifi Raises $25 Million for AI-Powered Email Security

Cybersecurity Funding, email security, funding, Trustifi /

Trustifi Raises $25 Million for AI-Powered Email Security 2025-06-04 at 07:56 By Ionut Arghire Trustifi has raised $25 million in Series A funding to accelerate its product roadmap and go-to-market initiatives. The post Trustifi Raises $25 Million for AI-Powered Email Security appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Trustifi Raises $25 Million for AI-Powered Email Security Read More »

Akamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ Flaw

Active Directory, Akamai, BadSuccessor, email security, Identity & Access, Microsoft, Vulnerabilities, Windows Server 2025 /

Akamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ Flaw 2025-05-22 at 20:08 By Ryan Naraine Akamai documents a privilege escalation flaw in Windows Server 2025 after Redmond declines to ship an immediate patch. The post Akamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ Flaw appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Akamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ Flaw Read More »

Critical OpenPGP.js Vulnerability Allows Spoofing

email security, Encryption, OpenPGP, Vulnerabilities, vulnerability /

Critical OpenPGP.js Vulnerability Allows Spoofing 2025-05-21 at 10:16 By Eduard Kovacs An OpenPGP.js vulnerability tracked as CVE-2025-47934 allows message signature verification to be spoofed.  The post Critical OpenPGP.js Vulnerability Allows Spoofing appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Critical OpenPGP.js Vulnerability Allows Spoofing Read More »

Trustwave Launches MailMarshal Integrated Cloud to Enhance Email Security for Microsoft 365 Environments

email security, Microsoft Security, News /

Trustwave Launches MailMarshal Integrated Cloud to Enhance Email Security for Microsoft 365 Environments 2025-05-19 at 16:01 By Discover how Trustwave MailMarshal Integrated Cloud enhances your Microsoft 365 environment security. Learn how Trustwave MailMarshal Integrated Cloud’s API-seamlessly integrates with M365. Trustwave MailMarshal secure email service now offers an integrated cloud solution to bolster your defenses against

React to this headline:

Loading spinner

Trustwave Launches MailMarshal Integrated Cloud to Enhance Email Security for Microsoft 365 Environments Read More »

Russian APT Exploiting Mail Servers Against Government, Defense Organizations

APT28, email security, MDaemon, Russia, Zero-Day /

Russian APT Exploiting Mail Servers Against Government, Defense Organizations 2025-05-16 at 13:15 By Ionut Arghire Russia-linked APT28 has been exploiting mail server vulnerabilities against government and defense entities since September 2023. The post Russian APT Exploiting Mail Servers Against Government, Defense Organizations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Russian APT Exploiting Mail Servers Against Government, Defense Organizations Read More »

Proofpoint to Acquire Hornetsecurity in Reported $1 Billion Deal

acquires, email security, Hornetsecurity, M&A, M&A Tracker, Microsoft 365, Proofpoint /

Proofpoint to Acquire Hornetsecurity in Reported $1 Billion Deal 2025-05-15 at 15:24 By Eduard Kovacs Enterprise cybersecurity giant Proofpoint is buying Germany-based Microsoft 365 security solutions provider Hornetsecurity. The post Proofpoint to Acquire Hornetsecurity in Reported $1 Billion Deal appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

Proofpoint to Acquire Hornetsecurity in Reported $1 Billion Deal Read More »

Russia-linked hackers target webmail servers in Ukraine-related espionage operation

APT, cyber espionage, email security, ESET, News, Russian Federation, XSS /

Russia-linked hackers target webmail servers in Ukraine-related espionage operation 2025-05-15 at 12:01 By Help Net Security ESET researchers have uncovered RoundPress, a Russia-aligned espionage operation targeting webmail servers via XSS vulnerabilities. Behind it is most likely the Russia-aligned Sednit (also known as Fancy Bear or APT28) cyberespionage group, holding the ultimate goal of stealing confidential

React to this headline:

Loading spinner

Russia-linked hackers target webmail servers in Ukraine-related espionage operation Read More »

Trustwave SpiderLabs’ Insights, History, and Mitigations for Scattered Spider

data breach, Database Protection, email security, Emerging Threats, Security Research, Threat Intelligence /

Trustwave SpiderLabs’ Insights, History, and Mitigations for Scattered Spider 2025-05-02 at 19:32 By The UK retail market has been thrown into turmoil in recent weeks, with three of that nation’s highest-profile retailers being targeted allegedly by the well-known threat group Scattered Spider in at least one of the most disruptive incidents. This article is an

React to this headline:

Loading spinner

Trustwave SpiderLabs’ Insights, History, and Mitigations for Scattered Spider Read More »

Why Microsoft Email Security Benefits from a Layered Approach

email security, Microsoft Security, Perspectives, Vulnerabilities /

Why Microsoft Email Security Benefits from a Layered Approach 2025-05-02 at 16:03 By Doug Olenick The best secure email gateways mimic the tried and true “defense in depth” cybersecurity strategy by using a layered approach, including advanced features that make effective use of AI. This article is an excerpt from Trustwave Blog View Original Source

React to this headline:

Loading spinner

Why Microsoft Email Security Benefits from a Layered Approach Read More »

A Deep-Rooted Infestation: How the ILOVEYOU Bug Continues its Legacy in Modern Worms

email security, Perspectives, Vulnerabilities /

A Deep-Rooted Infestation: How the ILOVEYOU Bug Continues its Legacy in Modern Worms 2025-05-02 at 16:03 By Pauline Bolaños A quarter century ago, a former computer science student from the Philippines accidentally unleashed one of the most destructive computer viruses in modern history. This article is an excerpt from SpiderLabs Blog View Original Source React

React to this headline:

Loading spinner

A Deep-Rooted Infestation: How the ILOVEYOU Bug Continues its Legacy in Modern Worms Read More »

Low-tech phishing attacks are gaining ground

email security, News, phishing, report, survey, VIPRE Security /

Low-tech phishing attacks are gaining ground 2025-05-01 at 07:02 By Help Net Security Cybercriminals are increasingly favoring low-tech, human-centric attacks to bypass email scanning technologies, according to VIPRE Security. The report is based on an analysis of global real-world data and highlights the most significant email security trends from the first quarter of 2025. Callback

React to this headline:

Loading spinner

Low-tech phishing attacks are gaining ground Read More »

The Top Phishing Lures Targeting Manufacturers Revealed by Trustwave SpiderLabs

Database Protection, email security /

The Top Phishing Lures Targeting Manufacturers Revealed by Trustwave SpiderLabs 2025-04-30 at 16:03 By As detailed in the 2025 Trustwave Risk Radar Report, cybercriminals are increasingly targeting the manufacturing sector with sophisticated phishing tactics, exploiting both human behavior and trusted platforms. Trustwave SpiderLabs researchers uncover the most prevalent phishing lures—file-sharing notifications, HR documents, fake payment

React to this headline:

Loading spinner

The Top Phishing Lures Targeting Manufacturers Revealed by Trustwave SpiderLabs Read More »

CISA warns about actively exploited Broadcom, Commvault vulnerabilities

Broadcom, CISA, Commvault, data center, Don't miss, email security, Hot stuff, Japan, News, USA /

CISA warns about actively exploited Broadcom, Commvault vulnerabilities 2025-04-29 at 15:47 By Zeljka Zorz The Cybersecurity and Infrastructure Security Agency (CISA) has added three new flaws to its Known Exploited Vulnerabilities catalog on Monday, affecting Commvault (CVE-2025-3928), Active! Mail (CVE-2025-42599), and Broadcom Brocade (CVE-2025-1976) solutions. CISA’s KEV catalog is constantly updated and provides IT admins

React to this headline:

Loading spinner

CISA warns about actively exploited Broadcom, Commvault vulnerabilities Read More »

Scroll to Top