Security Experts:

WRITE FOR US
Email Security

LATEST SECURITY NEWS HEADLINES

rss icon

Bulgaria Extradites Russian Hacker to US: Embassy
Exploit for Recent Flash Zero-Day Added to Fallout Exploit Kit
Hackers Actively Scanning for ThinkPHP Vulnerability, Akamai Says
Xbash Malware Uninstalls Cloud Security Products
Marco Rubio Proposes New Federal Data Privacy Bill
long dotted

NEWS & INDUSTRY UPDATES

Cisco Patches Serious DoS Flaws in Email Security Appliance
Cisco patches critical and high severity DoS vulnerabilities that can be exploited remotely without authentication in its Email Security Appliance. [Read More]
Iran-Linked DNS Hijacking Attacks Target Organizations Worldwide
A DNS hijacking campaign targeting government, telecoms and commercial entities around the world has been linked to Iran. [Read More]
FireEye Adds New Features to Email Security Product
FireEye has added several important features to its Email Security - Server Edition product. [Read More]
Latest Phishing Technique Uses Fake Fonts to Evade Detection
A phishing template used in recent attacks targeting customers of a major U.S. bank uses fake fonts to evade detection, Proofpoint security researchers warn. [Read More]
Authorities: Wave of Hoax Bomb Threats Made Across US
A wave of bomb threats emailed to hundreds of schools, businesses and government buildings across the U.S. triggered searches, evacuations and fear — but there were no signs of explosives, and authorities said the scare appeared to be a crude extortion attempt. [Read More]
House GOP Campaign Arm Targeted by 'Unknown Entity' in 2018
Thousands of emails were stolen from the hacked accounts of aides to the National Republican Congressional Committee (NRCC) during the 2018 midterm campaign. [Read More]
No Smoking Gun Tying Russia to Spear-Phishing Attack, Microsoft Says
There is not enough evidence to attribute a recent wave of spear-phishing emails impersonating personnel at the United States Department of State to Russian hackers, Microsoft says. [Read More]
Report Shows Increase in Email Attacks Using .com File Extensions
Anti-phishing firm Cofense (formerly PhishMe) has discovered an uptick in the use of .com file extensions in phishing email attacks. [Read More]
GreatHorn Expands Email Security Platform
GreatHorn has expanded its machine-learning phishing protection system into a complete email security platform that addresses every potential stage of a phishing attack with integrated threat detection, protection, and incident response. [Read More]
New Spam Botnet Likely Infected 400,000 Devices
A newly discovered botnet that appears designed to send spam emails likely infected around 400,000 machines to date, 360 Netlab security researchers warn. [Read More]

FEATURES, INSIGHTS // Email Security

rss icon

Siggi Stefnisson's picture
Evasive Malware, Meet Evasive Phishing
Siggi Stefnisson - Email Security
“Evasive phishing" is not a term much heard, but we all will—and need to—start talking a lot more about it than we have in the past.
Read full story
Alastair Paterson's picture
Attackers Are Landing Email Inboxes Without the Need to Phish
Alastair Paterson - Email Security
BEC is becoming increasingly profitable for threat actors as organizations are making it easy for adversaries to gain access to the valuable information that sits within these inboxes.
Read full story
Siggi Stefnisson's picture
Phishing Training is a Tool, Not a Solution
Siggi Stefnisson - Email Security
We should be thinking about how users work, what they do and how it affects the security posture of the business, but does security really start with them?
Read full story
Siggi Stefnisson's picture
Cross-Vector Threats: The Web Begins Where Email Ends
Siggi Stefnisson - Endpoint Security
Ninety percent of breaches may begin with an email, but today most of the action happens well after an inbound email has been scanned and delivered.
Read full story
Josh Lefkowitz's picture
Preventing Business Email Compromise Requires a Human Touch
Josh Lefkowitz - Email Security
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
Read full story
Jack Danahy's picture
The 3 Biggest Malware Trends to Watch in 2018
Jack Danahy - Email Security
To mitigate the risk of attacks, IT teams should disable unused tools and components, while deploying endpoint protection that doesn’t rely solely on file scanning or whitelisting.
Read full story
Markus Jakobsson's picture
It Takes a Village: The Importance of Security Standards
Markus Jakobsson - Email Security
DMARC is an email authentication standard designed to eliminate phishing and other types of attack that use spoofing to misrepresent an email sender identity.
Read full story
Markus Jakobsson's picture
Endpoint Protection: Spotting the Cyber Wolf in Sheep's Clothing
Markus Jakobsson - Endpoint Security
Endpoint protection will never be able to catch up with “known wolves,” but machine learning and artificial perception can change the rules of engagement with models of “known good.”
Read full story
Erin O’Malley's picture
Email Is Forever - and It's Not Private
Erin O’Malley - Email Security
Conventional email security solutions may defend against spam, viruses, and malware, but they don’t defend against ignorance or egregious stupidity.
Read full story
Bill Sweeney's picture
Social Engineering: How an Email Becomes a Cyber Threat
Bill Sweeney - Email Security
As data moves online, social engineering techniques have become far more personalized, technologically advanced and ultimately successful.
Read full story