Category: Email security

Email security, Security, Threats & Malware, Virus & Malware

Product showcase: Group-IB Unified Risk Platform

July 1, 2022

Via: Help Net Security

The cyber threat landscape has intensified. Threat actors are organized and professionalized, with ransomware gangs outsourcing the first step of their operations to Initial Access Brokers. This alliance has proven profitable for both sides, as the illegal sale of initial […]

Cyber-crime, Email security, Phishing, Security

Watch out for the email that says “You have a new voicemail!”

June 22, 2022

Via: Malwarebytes

A phishing campaign is using voicemail notification messages to go after victims’ Office 365 credentials. According to researchers at ZScaler, the campaign uses spoofed emails with an HTML attachment that contains encoded javascript. The email claims that you have a […]

Email security, Security

Cloudflare One enhancements strengthen zero trust security for organizations

June 21, 2022

Via: Help Net Security

Cloudflare announced several new capabilities for Cloudflare One, its zero trust SASE platform, making it the only cloud-native zero trust solution with global network scale. New features for Cloudflare One include sophisticated email security protection, data loss prevention tools, cloud […]

Cyber-crime, Email security, Phishing, Security

Potent Emotet Variant Spreads Via Stolen Email Credentials

June 10, 2022

Via: Threat Post

Emotet’s resurgence in April seems to be the signal of a full comeback for what was once dubbed “the most dangerous malware in the world,” with researchers spotting various new malicious phishing campaigns using hijacked emails to spread new variants […]

Cyber-crime, Email security, Phishing, Security

HTML attachments in phishing e-mails

May 16, 2022

Via: Securelist

The use of embedded HTML documents in phishing e-mails is a standard technique employed by cybercriminals. It does away with the need to put links in the e-mail body, which antispam engines and e-mail antiviruses usually detect with ease. HTML […]

Email security, Security

Novel Nerbian RAT Lurks Behind Faked COVID Safety Emails

May 11, 2022

Via: Dark Reading

Malicious emails with macro-enabled Word documents are spreading a never-before-seen remote-access Trojan, researchers say. Phishing emails purporting to contain COVID-19 safety information from the World Health Organization (WHO) are instead phishing lures intended to spread a novel remote-access Trojan (RAT) […]

Email security, Security

FBI: Losses From BEC Scams Surpass $43 Billion

May 5, 2022

Via: Security Week

These losses, which the FBI calls “exposed losses,” include both actual and attempted loss reported between June 2016 and December 2021. There has been an increase of 65% between 2019 and 2021, most likely due to the COVID-19 pandemic, which […]

Email security, Security

Unpatched Bug in RainLoop Webmail Could Give Hackers Access to all Emails

April 21, 2022

Via: The Hacker News

An unpatched high-severity security flaw has been disclosed in the open-source RainLoop web-based email client that could be weaponized to siphon emails from victims’ inboxes. “The code vulnerability […] can be easily exploited by an attacker by sending a malicious […]

Email security, Security

Hackers Hijack Email Reply Chains on Unpatched Exchange Servers to Spread Malware

March 28, 2022

Via: The Hacker News

A new email phishing campaign has been spotted leveraging the tactic of conversation hijacking to deliver the IceID info-stealing malware onto infected machines by making use of unpatched and publicly-exposed Microsoft Exchange servers. “The emails use a social engineering technique […]

Email security, Security

Cryptocurrency Services Hit by Data Breach at CRM Company HubSpot

March 21, 2022

Via: Security Week

According to HubSpot, the incident occured on March 18, when a “bad actor” managed to hack into an employee account. After the breach was discovered, the impacted account’s access was terminated and the company also “removed the ability for other […]