email security

Product showcase: Free email security test by ImmuniWeb Community Edition

Don't miss, email security, FBI, Hot stuff, ImmuniWeb, News, phishing, Product showcase, software /

Product showcase: Free email security test by ImmuniWeb Community Edition 14/08/2023 at 07:03 By Help Net Security According to an FBI report, in 2022, global losses from business email compromise (BEC) and email account compromise (EAC) attacks attained $43 billion, hitting a historic anti-record. Multiple cybersecurity vendors, including Microsoft and Trend Micro, reported a rapid […]

React to this headline:

Loading spinner

Product showcase: Free email security test by ImmuniWeb Community Edition Read More »

37% of third-party applications have high-risk permissions

Abnormal Security, cybersecurity, Email, email security, News, report, survey /

37% of third-party applications have high-risk permissions 10/08/2023 at 05:32 By Help Net Security Email attacks have increased in both sophistication and volume since the start of the year, according to Abnormal Security. Examining data since 2013, Abnormal identified a massive increase in third-party applications (apps) integrated with email, underscoring the proliferation of an emerging

React to this headline:

Loading spinner

37% of third-party applications have high-risk permissions Read More »

Salesforce Email Service Zero-Day Exploited in Phishing Campaign

email security, Featured, phishing, Salesforce /

Salesforce Email Service Zero-Day Exploited in Phishing Campaign 03/08/2023 at 12:47 By Eduard Kovacs Threat actors have exploited a Salesforce email service zero-day vulnerability and abused Meta features in a sophisticated phishing campaign. The post Salesforce Email Service Zero-Day Exploited in Phishing Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Salesforce Email Service Zero-Day Exploited in Phishing Campaign Read More »

Salesforce and Meta suffer phishing campaign that evades typical detection methods

0-day, cybercrime, cybersecurity, email security, Facebook, Guardio, News, phishing, Salesforce, vulnerability /

Salesforce and Meta suffer phishing campaign that evades typical detection methods 02/08/2023 at 17:18 By Help Net Security The Guardio research team discovered an email phishing campaign exploiting a zero-day vulnerability in Salesforce’s legitimate email services and SMTP servers. Phishing email sample as was sent from the “@salesforce.com” email address The vulnerability allowed threat actors

React to this headline:

Loading spinner

Salesforce and Meta suffer phishing campaign that evades typical detection methods Read More »

Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails

Azure, cloud security, email authentication, email security, Featured, Government, Microsoft, MSA key /

Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails 21/07/2023 at 20:19 By Ryan Naraine Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online. The post Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Microsoft Cloud Hack Exposed More than Exchange, Outlook Emails Read More »

In Other News: Military Emails Leaked, Google Restricts Internet Access, Chinese Spyware

email security, ICS/OT, In Other News, Malware & Threats /

In Other News: Military Emails Leaked, Google Restricts Internet Access, Chinese Spyware 21/07/2023 at 18:03 By Eduard Kovacs Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 17, 2023. The post In Other News: Military Emails Leaked, Google Restricts Internet Access,

React to this headline:

Loading spinner

In Other News: Military Emails Leaked, Google Restricts Internet Access, Chinese Spyware Read More »

Chinese Cyberspies Used Forged Authentication Tokens to Hack Government Emails

email security /

Chinese Cyberspies Used Forged Authentication Tokens to Hack Government Emails 12/07/2023 at 17:02 By Eduard Kovacs Microsoft says a Chinese cyberespionage group tracked as Storm-0558 has used forged authentication tokens to access government emails. The post Chinese Cyberspies Used Forged Authentication Tokens to Hack Government Emails appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chinese Cyberspies Used Forged Authentication Tokens to Hack Government Emails Read More »

In Other News: Healthcare Product Flaws, Free Email Security Testing, New Attack Techniques

email security, In Other News, Malware & Threats, Vulnerabilities /

In Other News: Healthcare Product Flaws, Free Email Security Testing, New Attack Techniques 07/07/2023 at 18:31 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 3, 2023. The post In Other News: Healthcare Product Flaws, Free Email Security

React to this headline:

Loading spinner

In Other News: Healthcare Product Flaws, Free Email Security Testing, New Attack Techniques Read More »

Insurance companies neglect basic email security

EasyDMARC, Email, email security, News, survey /

Insurance companies neglect basic email security 23/06/2023 at 06:00 By Help Net Security Only 3.54% of of insurance companies have correctly implemented basic phishing and spoofing protection, according to EasyDMARC. DMARC standard adoption Insurers operate using highly sensitive, private information that they’ve been trusted by clients and customers to protect. They function in a highly

React to this headline:

Loading spinner

Insurance companies neglect basic email security Read More »

Russian APT Group Caught Hacking Roundcube Email Servers

email security, Nation-State /

Russian APT Group Caught Hacking Roundcube Email Servers 20/06/2023 at 20:24 By Ryan Naraine A Russian hacking group has been caught hacking into Roundcube servers to spy on government institutions and military entities in Ukraine. The post Russian APT Group Caught Hacking Roundcube Email Servers appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Russian APT Group Caught Hacking Roundcube Email Servers Read More »

Cybercriminals use legitimate websites to obfuscate malicious payloads

cybercrime, Egress, email security, Malware, News, phishing, report, scams, social engineering, threat, threats /

Cybercriminals use legitimate websites to obfuscate malicious payloads 02/06/2023 at 06:33 By Help Net Security According to Egress, the evolving attack methodologies currently used by cybercriminals are designed to get through traditional perimeter security. “The evolution of phishing emails continues to pose a major threat to organizations, emphasizing the need to enhance defenses to prevent

React to this headline:

Loading spinner

Cybercriminals use legitimate websites to obfuscate malicious payloads Read More »

Organizations spend 100 hours battling post-delivery email threats

attacks, Barracuda Networks, cyberattack, cybercrime, cybercriminals, email security, News, spear-phishing /

Organizations spend 100 hours battling post-delivery email threats 30/05/2023 at 06:11 By Help Net Security Nearly every victim of a spear-phishing attack in the last 12 months saw impacts on their organization, including malware infections, stolen data, and reputational damage, according to Barracuda Networks. Barracuda Networks research finds 24% of organizations studied had at least

React to this headline:

Loading spinner

Organizations spend 100 hours battling post-delivery email threats Read More »

Cybercriminals masquerading as MFA vendors

attacks, cybercriminals, email security, MFA, News, phishing, spam, VIPRE Security /

Cybercriminals masquerading as MFA vendors 26/05/2023 at 07:20 By Help Net Security Cybercriminals are increasingly posing as multi-factor authentication vendors and small businesses are becoming more popular targets, according to VIPRE. Attachment-based malspam is on the rise Financial institutions (48%) are still the most targeted sector by a wide margin. Insider attacks now take on

React to this headline:

Loading spinner

Cybercriminals masquerading as MFA vendors Read More »

Barracuda email security appliances hacked via zero-day vulnerability (CVE-2023-2868)

0-day, Barracuda Networks, Don't miss, email security, Hot stuff, News, vulnerability /

Barracuda email security appliances hacked via zero-day vulnerability (CVE-2023-2868) 25/05/2023 at 13:07 By Zeljka Zorz A vulnerability (CVE-2023-2868) in Barracuda Networks’ Email Security Gateway (ESG) appliances has been exploited by attackers, the company has warned. About CVE-2023-2868 CVE-2023-2868 is a critical remote command injection vulnerability affecting only physical Barracuda Email Security Gateway appliances, versions 5.1.3.001

React to this headline:

Loading spinner

Barracuda email security appliances hacked via zero-day vulnerability (CVE-2023-2868) Read More »

Threat Actor Abuses SuperMailer for Large-scale Phishing Campaign

cybercrime, email security, phishing /

Threat Actor Abuses SuperMailer for Large-scale Phishing Campaign 23/05/2023 at 21:33 By Kevin Townsend A credential phishing campaign using the legitimate SuperMailer newsletter distribution app has doubled in size each month since January 2023. The post Threat Actor Abuses SuperMailer for Large-scale Phishing Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Threat Actor Abuses SuperMailer for Large-scale Phishing Campaign Read More »

Microsoft: BEC Scammers Use Residential IPs to Evade Detection

BEC, email security, Fraud & Identity Theft /

Microsoft: BEC Scammers Use Residential IPs to Evade Detection 22/05/2023 at 14:20 By Ionut Arghire BEC scammers use residential IP addresses in attacks to make them seem locally generated and evade detection. The post Microsoft: BEC Scammers Use Residential IPs to Evade Detection appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Microsoft: BEC Scammers Use Residential IPs to Evade Detection Read More »

Malicious links and misaddressed emails slip past security controls

Armorblox, cybercrime, Email, email security, ESG, News, survey, threats /

Malicious links and misaddressed emails slip past security controls 22/05/2023 at 06:33 By Help Net Security The majority of organizations use six or more communication tools, across channels, with email remaining the channel seen as the most vulnerable to attacks (38%), according to Armorblox. Respondents mentioned multi-channel attacks are gaining momentum and frequency. More than

React to this headline:

Loading spinner

Malicious links and misaddressed emails slip past security controls Read More »

Scroll to Top