Top

Category: Email security


Email security, Security

Abnormal Security Posture Management offers protection against email platform attacks

November 16, 2022

Via: Help Net Security

Abnormal Security has released Security Posture Management, its newest addition to the product portfolio as the company progresses toward delivering the cloud email security. The latest innovation protects customers from emerging email platform attacks that are increasing in volume and […]


Email security, Security

Top enterprise email threats and how to counter them

November 15, 2022

Via: Help Net Security

A research from Tessian, the State of Email Security Report, found that enterprise email is now the No. 1 threat vector for cyberattacks. According to the report, 94% of organizations experienced a spear phishing or impersonation attack, and 92% suffered […]


Email security, Security

Researchers Say Microsoft Office 365 Uses Broken Email Encryption to Secure Messages

October 17, 2022

Via: The Hacker News

New research has disclosed what’s being called a security vulnerability in Microsoft 365 that could be exploited to infer message contents due to the use of a broken cryptographic algorithm. “The [Office 365 Message Encryption] messages are encrypted in insecure […]


Email security, Security

Microsoft Email Encryption Vulnerable to Structural Leaks

October 14, 2022

Via: DataBreach Today

Electronic Codebook encrypts repeated blocks of information with the same ciphertext – meaning that in the supposedly impenetrable gibberish encryption uses to protect information from prying eyes, patterns may emerge. “You can have the correct cipher, a really secure way […]


Email security, Security

Mass email campaign with a pinch of targeted spam

September 23, 2022

Via: Securelist

Most mass malicious mailing campaigns are very primitive and hardly diverse, with the content limited to several sentences offering the user to download archives that supposedly contain some urgent bills or unpaid fines. The email messages may contain no signatures […]


Email security, Security

N-able Private Portal adds an extra layer of security for sensitive and business-critical emails

September 9, 2022

Via: Help Net Security

N-able has introduced Private Portal, an extra layer of email security to help protect critical business data, to N-able Mail Assure. Private Portal, included with Mail Assure free of charge, sends a notification to recipients when they receive an email […]


Email security, Security

Business Email Compromise: Secret Service on How to Respond

August 31, 2022

Via: DataBreach Today

Ransomware gets the headlines, and phishing sets off the most alerts, but business email compromise costs enterprises the most – more than $43 billion since 2016. U.S. Secret Service agents Stephen Dougherty and Michael Johns discuss the criticality of rapid […]


Email security, Security

Why business email compromise still tops ransomware for total losses

August 24, 2022

Via: CSO Online

While businesses are busy trying to protect themselves against ransomware attacks that spark headlines news, threat actors are sticking to one of the oldest and most effective hacking techniques—business email compromise (BEC). Enterprise security has skewed toward ransomware in recent […]


Email security, Security

Fugitive Arrested After 3 Years on Charges Related to BEC Scheme

August 17, 2022

Via: Security Week

Indicted in 2019, Fombe was a fugitive for three years until he was arrested on August 6. He is charged with conspiracy to commit wire fraud and money laundering, and with aggravated identity theft. The man, aged 36, has been […]


Email security, Security, Threats & Malware, Virus & Malware

Product showcase: Group-IB Unified Risk Platform

July 1, 2022

Via: Help Net Security

The cyber threat landscape has intensified. Threat actors are organized and professionalized, with ransomware gangs outsourcing the first step of their operations to Initial Access Brokers. This alliance has proven profitable for both sides, as the illegal sale of initial […]


Cyber-crime, Email security, Phishing, Security

Watch out for the email that says “You have a new voicemail!”

June 22, 2022

Via: Malwarebytes

A phishing campaign is using voicemail notification messages to go after victims’ Office 365 credentials. According to researchers at ZScaler, the campaign uses spoofed emails with an HTML attachment that contains encoded javascript. The email claims that you have a […]


Email security, Security

Cloudflare One enhancements strengthen zero trust security for organizations

June 21, 2022

Via: Help Net Security

Cloudflare announced several new capabilities for Cloudflare One, its zero trust SASE platform, making it the only cloud-native zero trust solution with global network scale. New features for Cloudflare One include sophisticated email security protection, data loss prevention tools, cloud […]


Cyber-crime, Email security, Phishing, Security

Potent Emotet Variant Spreads Via Stolen Email Credentials

June 10, 2022

Via: Threat Post

Emotet’s resurgence in April seems to be the signal of a full comeback for what was once dubbed “the most dangerous malware in the world,” with researchers spotting various new malicious phishing campaigns using hijacked emails to spread new variants […]


Cyber-crime, Email security, Phishing, Security

HTML attachments in phishing e-mails

May 16, 2022

Via: Securelist

The use of embedded HTML documents in phishing e-mails is a standard technique employed by cybercriminals. It does away with the need to put links in the e-mail body, which antispam engines and e-mail antiviruses usually detect with ease. HTML […]


Email security, Security

Novel Nerbian RAT Lurks Behind Faked COVID Safety Emails

May 11, 2022

Via: Dark Reading

Malicious emails with macro-enabled Word documents are spreading a never-before-seen remote-access Trojan, researchers say. Phishing emails purporting to contain COVID-19 safety information from the World Health Organization (WHO) are instead phishing lures intended to spread a novel remote-access Trojan (RAT) […]


Email security, Security

FBI: Losses From BEC Scams Surpass $43 Billion

May 5, 2022

Via: Security Week

These losses, which the FBI calls “exposed losses,” include both actual and attempted loss reported between June 2016 and December 2021. There has been an increase of 65% between 2019 and 2021, most likely due to the COVID-19 pandemic, which […]


Email security, Security

Unpatched Bug in RainLoop Webmail Could Give Hackers Access to all Emails

April 21, 2022

Via: The Hacker News

An unpatched high-severity security flaw has been disclosed in the open-source RainLoop web-based email client that could be weaponized to siphon emails from victims’ inboxes. “The code vulnerability […] can be easily exploited by an attacker by sending a malicious […]


Email security, Security

Hackers Hijack Email Reply Chains on Unpatched Exchange Servers to Spread Malware

March 28, 2022

Via: The Hacker News

A new email phishing campaign has been spotted leveraging the tactic of conversation hijacking to deliver the IceID info-stealing malware onto infected machines by making use of unpatched and publicly-exposed Microsoft Exchange servers. “The emails use a social engineering technique […]


Email security, Security

Cryptocurrency Services Hit by Data Breach at CRM Company HubSpot

March 21, 2022

Via: Security Week

According to HubSpot, the incident occured on March 18, when a “bad actor” managed to hack into an employee account. After the breach was discovered, the impacted account’s access was terminated and the company also “removed the ability for other […]


Data loss, Email security, Security, Threats & Malware

Over 500,000 Patients Hit by Data Breaches at Healthcare Firms in Alabama, Colorado

March 14, 2022

Via: Security Week

The most recent cyberattack – and most impactful – targeted South Denver Cardiology Associates and resulted in the data of more than 287,000 patients being exfiltrated. The Colorado firm identified the attack on January 4 and later discovered that an […]