Email Threats Continue to Grow as Attackers Evolve, …

Threat actors increasingly using malicious URLs, HTTPS domains, file-sharing sites in email attacks, FireEye says. Email continues to be an extremely effective vector for delivering malicious content because of how adept attackers have become at tricking users over the years. The latest examples include the increasing use of malicious URLs in emails rather than attachments,
Read more
No Comments

Vulnerability Found in Millions of Email Systems

The vuln could allow remote execution of code with root privilege in more than 4.1 million systems. Security researchers at Qualys Common discovered a remote command execution vulnerability in older versions of mail transfer agent (MTA) Exim — a critical, open source piece of the email infrastructure in many organizations. An MTA functions much like
Read more
No Comments

The Minefield of Corporate Email

Email security challenges CISOs as cybercriminals target corporate inboxes with malware, phishing attempts, and various forms of fraud. Employee email accounts are prime targets for fraudsters, phishing attacks, and malware delivery as hackers assume someone will click, download, or respond to fall into their traps. The threats causing concern are far from new — in fact,
Read more
No Comments

Baltimore Email, Other Systems Still Offline from …

The city’s mayor says there’s no ‘exact timeline on when all systems will be restored.’ The city of Baltimore’s email system remains down today as it continues its recovery from a massive ransomware attack on May 7 that is under investigation by the FBI.  Baltimore suffered an attack from the so-called Robbinhood ransomware variant but vowed
Read more
8 Comments

Microsoft Downplays Scope of Email Attack

An unknown attacker used a support agent’s credentials to access email content belonging to some Outlook, Hotmail users. Microsoft on Monday maintained that an incident reported over the weekend about an unknown attacker using a customer support agent’s credentials to access email content belonging to users of MSN, Outlook, and Hotmail accounts, affected only a
Read more
6 Comments

763M Email Addresses Exposed in Latest Database …

MongoDB once again used by database admin who opens unencrypted database to the whole world. In February, a security researcher named Bob Diachenko found a MongoDB data instance containing four collections of data and a total of 150GB of data including approximately 763 million unique email addresses. The data instance was openly available and the
Read more
18 Comments

Devastating Cyberattack on Email Provider Destroys …

All data belonging to US users-including backup copies-have been deleted in catastrophe, VMEmail says. An unknown attacker appears to have deleted 18 years’ worth of customer emails, along with all backup copies of the data, at email provider VFEmail. A note on the firm’s website Tuesday described the attack, first reported by KrebsOnSecurity, as causing
Read more
20 Comments

Review: GreatHorn offers a better way to secure enterprise email

Email is probably the most ubiquitous technology of the modern office. Businesses and simply could not exist in their current form without it. And this is true regardless of the size of an organization or their specialization. If an enterprise network exists, then there will certainly be an email component. Criminals know this as well,
Read more
19 Comments

What is spear phishing? Why targeted email attacks are so difficult to stop

Spear phishing definition Spear phishing is the act of sending and emails to specific and well-researched targets while purporting to be a trusted sender. The aim is to either infect devices with malware or convince victims to hand over information or money. Where phishing attacks began as Nigerian prince scams in the mid-1990s, today they
Read more
43 Comments

773 Million Email Addresses, 21 Million Passwords …

Data appears to be from multiple breaches over past few years, says researcher who discovered it. A folder with over 12,000 files containing nearly 773 million email addresses and over 21 million unique passwords from numerous previous data breaches — some potentially dating back to 2008 — has been posted online in another massive leak
Read more
17 Comments