Email Security CISA Warns of Roundcube Webmail Vulnerability Exploitation CISA has added the Roundcube flaw tracked as CVE-2023-43770 to its known exploited vulnerabilities catalog. Eduard KovacsFebruary 13, 2024
Email Security HPE Says Russian Government Hackers Had Access to Emails for 6 Months HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months. Eduard KovacsJanuary 25, 2024
Email Security Mimecast Acquires User Education Startup Elevate Security Elevate Security raised $18.3 million in venture capital financing and scored investments from the likes of Cisco and CrowdStrike. Ryan NaraineJanuary 4, 2024
Email Security Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day Chinese hackers exploited a zero-day tracked as CVE-2023-7102 to deliver malware to Barracuda Email Security Gateway (ESG) appliances. Eduard KovacsDecember 27, 2023
Email Security SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols A new attack technique named SMTP Smuggling can allow malicious actors to send out spoofed emails that bypass authentication mechanisms. Eduard KovacsDecember 18, 2023
Cyberwarfare CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation The US cybersecurity agency calls attention to a Russian APT targeting academia, defense, governmental organizations, NGOs and think-tanks. Ryan NaraineDecember 7, 2023