email security

US Says North Korean Hackers Exploiting Weak DMARC Settings 

APT, DMARC, email security, Featured, Kimsuky, Malware & Threats, Nation-State, North Korea /

US Says North Korean Hackers Exploiting Weak DMARC Settings  2024-05-03 at 19:16 By Ionut Arghire The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks. The post US Says North Korean Hackers Exploiting Weak DMARC Settings  appeared first on SecurityWeek. This article is an excerpt from […]

React to this headline:

Loading spinner

US Says North Korean Hackers Exploiting Weak DMARC Settings  Read More »

56% of cyber insurance claims originate in the email inbox

BEC scams, Coalition, cybersecurity, email security, firewall, Insurance, News, Ransomware, report, survey, VPN /

56% of cyber insurance claims originate in the email inbox 2024-04-25 at 13:01 By Help Net Security 56% of all 2023 claims were a result of funds transfer fraud (FTF) or business email compromise (BEC), highlighting the importance of email security as a critical aspect of cyber risk management, according to Coalition. The 2024 Cyber

React to this headline:

Loading spinner

56% of cyber insurance claims originate in the email inbox Read More »

KnowBe4 Plans to Acquire Egress for Email Security Tech

awareness training, Egress, Email, email security, KnowBe4, M&A Tracker, phishing /

KnowBe4 Plans to Acquire Egress for Email Security Tech 2024-04-24 at 19:16 By Ryan Naraine KnowBe4 boasts that the merger will create “the largest, advanced AI-driven cybersecurity platform for managing human risk.” The post KnowBe4 Plans to Acquire Egress for Email Security Tech appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

KnowBe4 Plans to Acquire Egress for Email Security Tech Read More »

IMF Emails Hacked

Email, email security, Featured, IMF /

IMF Emails Hacked 2024-03-18 at 10:28 By Eduard Kovacs The International Monetary Fund (IMF) detects a cybersecurity incident that involved nearly a dozen email accounts getting hacked. The post IMF Emails Hacked appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

IMF Emails Hacked Read More »

Image-based phishing tactics evolve

cybercrime, cybersecurity, email security, Ironscales, News, Osterman Research, phishing, QR codes, report, survey /

Image-based phishing tactics evolve 2024-03-12 at 06:00 By Help Net Security While 70% of organizations feel their current security stacks are effective against image-based and QR code phishing attacks, 76% were still compromised in the last 12 months, according to IRONSCALES and Osterman Research. IT pros are highly aware of emerging types of phishing attacks

React to this headline:

Loading spinner

Image-based phishing tactics evolve Read More »

Email security trends in the energy and infrastructure sector

Abnormal Security, attacks, BEC scams, critical infrastructure, cybersecurity, Don't miss, Email, email security, energy sector, Hot stuff, risk, Video /

Email security trends in the energy and infrastructure sector 2024-03-11 at 09:07 By Help Net Security In this Help Net Security video, Mike Britton, CISO at Abnormal Security, discusses how energy and infrastructure organizations face an increased risk of business email compromise and vendor email compromise attacks. According to Abnormal Security data, from February 2023

React to this headline:

Loading spinner

Email security trends in the energy and infrastructure sector Read More »

Cybercriminals Spoof US Government Organizations in BEC, Phishing Attacks

BEC, cybercrime, email security, phishing /

Cybercriminals Spoof US Government Organizations in BEC, Phishing Attacks 2024-03-07 at 16:40 By Ionut Arghire Threat actor tracked as TA4903 spoofing US government entities in phishing and fraud campaigns. The post Cybercriminals Spoof US Government Organizations in BEC, Phishing Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Cybercriminals Spoof US Government Organizations in BEC, Phishing Attacks Read More »

Discount Retail Giant Pepco Loses €15 Million to Cybercriminals

BEC, cybercrime, email security, phishing /

Discount Retail Giant Pepco Loses €15 Million to Cybercriminals 2024-02-29 at 17:46 By Eduard Kovacs European discount retailer Pepco has lost €15.5 million as a result of what it described as a phishing attack. The post Discount Retail Giant Pepco Loses €15 Million to Cybercriminals appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Discount Retail Giant Pepco Loses €15 Million to Cybercriminals Read More »

Domains Once Owned by Major Firms Help Millions of Spam Emails Bypass Security

Email, email authentication, email security, spam /

Domains Once Owned by Major Firms Help Millions of Spam Emails Bypass Security 2024-02-27 at 16:46 By Eduard Kovacs 8,800 domains, many once owned by major companies, have been abused to get millions of emails past spam filters as part of SubdoMailing campaign. The post Domains Once Owned by Major Firms Help Millions of Spam

React to this headline:

Loading spinner

Domains Once Owned by Major Firms Help Millions of Spam Emails Bypass Security Read More »

CISA Warns of Roundcube Webmail Vulnerability Exploitation

CISA, CISA KEV, email security, exploited, Roundcube, Vulnerabilities /

CISA Warns of Roundcube Webmail Vulnerability Exploitation 2024-02-13 at 13:31 By Eduard Kovacs CISA has added the Roundcube flaw tracked as CVE-2023-43770 to its known exploited vulnerabilities catalog. The post CISA Warns of Roundcube Webmail Vulnerability Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

CISA Warns of Roundcube Webmail Vulnerability Exploitation Read More »

Protecting against AI-enhanced email threats

Artificial Intelligence, Don't miss, email security, Hot stuff, LLMs, News, phishing, strategy, threats /

Protecting against AI-enhanced email threats 2024-02-13 at 07:31 By Helga Labus Generative AI based on large language models (LLMs) has become a valuable tool for individuals and businesses, but also cybercriminals. Its ability to process large amounts of data and quickly generate results has contributed to its widespread adoption. AI in the hands of cybercriminals

React to this headline:

Loading spinner

Protecting against AI-enhanced email threats Read More »

HPE Says Russian Government Hackers Had Access to Emails for 6 Months

APT29, Email, email security, Featured, HPE, Nation-State, Russia /

HPE Says Russian Government Hackers Had Access to Emails for 6 Months 2024-01-25 at 12:16 By Eduard Kovacs HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months. The post HPE Says Russian Government Hackers Had Access to Emails for 6 Months appeared first on

React to this headline:

Loading spinner

HPE Says Russian Government Hackers Had Access to Emails for 6 Months Read More »

Organizations need to switch gears in their approach to email security

cybersecurity, Egress, Email, email security, News, phishing, report, survey /

Organizations need to switch gears in their approach to email security 2024-01-23 at 06:02 By Help Net Security Email security risks remain high with 94% of organizations experiencing incidents in the past 12 months, according to Egress. Inbound email incidents primarily took the form of malicious URLs, attacks sent from a compromised account, and malware

React to this headline:

Loading spinner

Organizations need to switch gears in their approach to email security Read More »

Flipping the BEC funnel: Phishing in the age of GenAI

Artificial Intelligence, BEC scams, CISO, cybersecurity, Don't miss, email security, Expert analysis, Expert corner, generative AI, Hot stuff, Ironscales, News, opinion, phishing, SOC /

Flipping the BEC funnel: Phishing in the age of GenAI 2024-01-15 at 08:02 By Help Net Security For years, phishing was just a numbers game: A malicious actor would slap together an extremely generic (and usually poorly-written) email and fire it out to thousands of recipients in the hope that a few might take the

React to this headline:

Loading spinner

Flipping the BEC funnel: Phishing in the age of GenAI Read More »

Social engineer reveals effective tricks for real-world intrusions

cybersecurity, Don't miss, email security, Features, Hot stuff, human, human error, network, News, opinion, phishing, Secure Yeti, social engineering, social media, threat /

Social engineer reveals effective tricks for real-world intrusions 2024-01-08 at 08:31 By Mirko Zorz In this Help Net Security interview, Jayson E. Street, Chief Adversarial Officer at Secure Yeti, discusses intriguing aspects of social engineering and unconventional methods for gathering target information. Street explores the overlooked threat of physical security and the human tendency to

React to this headline:

Loading spinner

Social engineer reveals effective tricks for real-world intrusions Read More »

Uncovering the hidden dangers of email-based attacks

Abnormal Security, cybersecurity, Email, email security, Inky, SafeGuard Cyber, Video /

Uncovering the hidden dangers of email-based attacks 2024-01-08 at 06:01 By Help Net Security Email-based attacks have evolved beyond traditional spam and phishing attempts. Cybercriminals now employ sophisticated tactics such as spear-phishing, whaling, and business email compromise (BEC), posing a significant threat to businesses of all sizes. Email attacks can result in financial losses, reputational

React to this headline:

Loading spinner

Uncovering the hidden dangers of email-based attacks Read More »

Mimecast Acquires User Education Startup Elevate Security 

awareness training, Elevate Security, email security, Funding/M&A, Mimecast, user education /

Mimecast Acquires User Education Startup Elevate Security  2024-01-04 at 20:17 By Ryan Naraine Elevate Security raised $18.3 million in venture capital financing and scored investments from the likes of Cisco and CrowdStrike. The post Mimecast Acquires User Education Startup Elevate Security  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Mimecast Acquires User Education Startup Elevate Security  Read More »

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day

Barracuda, email security, Featured, Malware & Threats, Zero-Day /

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day 2023-12-27 at 13:16 By Eduard Kovacs Chinese hackers exploited a zero-day tracked as CVE-2023-7102 to deliver malware to Barracuda Email Security Gateway (ESG) appliances. The post Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day Read More »

SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols

Email, email authentication, email security, SMTP, spoofing /

SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols 18/12/2023 at 17:16 By Eduard Kovacs A new attack technique named SMTP Smuggling can allow malicious actors to send out spoofed emails that bypass authentication mechanisms. The post SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols Read More »

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation

CISA, Cyberwarfare, email security, Microsoft, Nation-State, Russia, Star Blizzard, Threat Intelligence /

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation 08/12/2023 at 00:48 By Ryan Naraine The US cybersecurity agency calls attention to a Russian APT targeting academia, defense, governmental organizations, NGOs and think-tanks. The post CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation Read More »

Scroll to Top