Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Proton Technologies is deploying a new system to ensure that its email and VPN applications continue to be accessible even in scenarios where governments or ISPs attempt to block them. [Read More]
Nearly 1 million domains use DMARC, but only 13% of them are configured to actually prevent email spoofing, says Valimail. [Read More]
ProtonMail has introduced DKIM key management in an effort to protect custom domain email addresses against domain name impersonation. [Read More]
An update released this week for the OpenSMTPD mail server addresses an out-of-bounds read vulnerability that could lead to arbitrary command execution. [Read More]
A group of business email compromise (BEC) scammers that targeted thousands in the United States employed Google’s G Suite for their infrastructure. [Read More]
Eighty-five percent of Fortune 500 companies are not using DMARC to protect themselves and their customers from fraudulent emails. [Read More]
Several cybersecurity companies have spotted various campaigns that leverage coronavirus-themed emails to deliver malware, phishing and scams. [Read More]
Of the 15 current U.S Presidential candidates, eight now protect their domains from email spoofing with enforced DMARC. [Read More]
A vulnerability that can allow remote command execution with elevated privileges has been found in OpenSMTPD, OpenBSD's mail server. [Read More]
Russia's FSB security service said it blocked Geneva-based ProtonMail after a series of anonymous bomb threats were sent through the service. [Read More]
FEATURES, INSIGHTS // Email Security
Conventional email security solutions may defend against spam, viruses, and malware, but they don’t defend against ignorance or egregious stupidity.
As data moves online, social engineering techniques have become far more personalized, technologically advanced and ultimately successful.
Yahoo's “Account Key” uses push notifications to their Yahoo Mail app on mobile devices. Will this securely replace passwords and two-factor authentication?
In the case of Hilary Clinton's personal email server, we know that Top Secret information was transmitted over a network that likely wasn’t equipped to safeguard it. If her server was a target of foreign state actors, the implications are frightening.
Today’s email-based attacks don’t occur at a single point in time and use multiple methods to evade detection. To bolster protection, organizations may turn to a set of disparate products that don’t – and can’t – work together.
Recent high-profile security breaches at major retailers stem from the fact that in-store networks and their components are evolving and spawning a range of attack vectors.
Many continue to click on links or attachments sent via email without taking any steps to verify the origin of the email or the validity of the link or attachment. It only takes one click to for an attacker to establish a foothold in the target’s systems.
Social engineering attacks can happen at any time. Here are some strategies you can use to help reduce the chances of a successful social engineering/phishing attack you or your organization.
Was the Mayan Apocalypse was a myth? Since I am a security geek, I just happen to talk about security a lot. What are some security myths I have heard in my conversations with some very bright people?
In this column, Tal analyzes the technical details of the DKIM vulnerability, evaluates possible implications of the exploit, and points to some general lessons.
Get the Daily Briefing
- Vulnerabilities in Popular Open Source Management Tool Expose Hospitals to Attacks
- Honeywell Sees Rise in USB-Borne Malware That Can Cause Major ICS Disruption
- Researchers Find Pre-Installed Malware on More Android Phones in U.S.
- Germany Seizes Server Hosting Pilfered U.S. Police Files
- Microsoft Adds New Data Corruption Preventions to Windows
- Palo Alto Networks Patches Command Injection Vulnerabilities in PAN-OS
- Powerful Conti Ransomware Emerges
- Cyberattack Simulation Company XM Cyber Raises $17 Million
- Google Patches Critical Android Vulnerabilities With July 2020 Updates
- Over 5 Billion Unique Credentials Offered on Cybercrime Marketplaces
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy