Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
A group of academic researchers has devised practical attacks against major standards in email end-to-end encryption, which could lead to the exfiltration of sensitive information. [Read More]
The SANS Institute has disclosed a security incident which resulted in 28,000 records of personally identifiable information (PII) being forwarded to an unknown email address. [Read More]
Email and data security provider Mimecast on Thursday announced the acquisition of messaging security company MessageControl. [Read More]
Twitter says hackers targeted 130 accounts in the recent attack, but only managed to hijack some of them. [Read More]
COVID-19 is fueling phishing and scams while BEC attacks continue to evolve and increase, according to a report from Abnormal Security. [Read More]
Cyber-threats taking advantage of the COVID-19 pandemic are evolving, and Google is seeing an increase in related phishing attempts in countries such as Brazil, India, and the UK. [Read More]
The NSA has published information on the targeting of Exim mail servers by the Russia-linked threat actor known as Sandworm Team. [Read More]
The U.N. disarmament chief warned Friday that cyber crime is on the rise, with a 600% increase in malicious emails during the COVID-19 pandemic. [Read More]
Google this week released Chrome 83 to the stable channel with patches for a total of 38 vulnerabilities, with improved Safe Browsing protection, and updated privacy and security controls. [Read More]
Edison Mail says a security bug in its iOS app that gave users access to other people’s email accounts impacted nearly 6,500 users. [Read More]
- 1 of 32
- ››
FEATURES, INSIGHTS // Email Security
Organizations may not be able to mitigate BEC scams entirely; however, tightening up processes will ensure data exposure is kept to a minimum.
By learning from the past there are many steps we can take to strength our approach to security as attackers continue to turn to email to help accomplish their mission.
“Evasive phishing" is not a term much heard, but we all will—and need to—start talking a lot more about it than we have in the past.
BEC is becoming increasingly profitable for threat actors as organizations are making it easy for adversaries to gain access to the valuable information that sits within these inboxes.
We should be thinking about how users work, what they do and how it affects the security posture of the business, but does security really start with them?
Ninety percent of breaches may begin with an email, but today most of the action happens well after an inbound email has been scanned and delivered.
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
To mitigate the risk of attacks, IT teams should disable unused tools and components, while deploying endpoint protection that doesn’t rely solely on file scanning or whitelisting.
DMARC is an email authentication standard designed to eliminate phishing and other types of attack that use spoofing to misrepresent an email sender identity.
Endpoint protection will never be able to catch up with “known wolves,” but machine learning and artificial perception can change the rules of engagement with models of “known good.”
- 1 of 4
- ››
Get the Daily Briefing
- Financial Impact of Ransomware Attack on Sopra Steria Could Reach €50 Million
- U of Vermont Medical Center Continuing Cyber-Attack Recovery
- Three Nigerians Arrested for Cybercrime Operation Targeting 150 Countries
- Canon Says Data Stolen in August 2020 Ransomware Attack
- US Extends TikTok Sale Deadline to December 4
- Drupal Releases Out-of-Band Security Updates Due to Availability of Exploits
- Unofficial Patch Released for Windows 7 Zero-Day Vulnerability
- Man United Unable to Fully Restore Systems After Cyberattack
- EU Plans New Rules Giving Europeans More Control of Data
- Danish News Agency Rejects Ransom Demand After Hacker Attack
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy