Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Full video of panel discussion from SecurityWeek's 2021 CISO Forum on navigating software bill of materials (SBOM) and supply chain security transparency. [Read More]
Weir Group says the attack forced it to isolate and shut down systems and that engineering applications were only partially restored. [Read More]
Redmond threat hunters technical details on UNC-0343, an Iran-linked apex actor using password spraying to break into Office 365 accounts since at least July 2021. [Read More]
Eric Iwu, resident of Buffalo, New York, faces up to 20 years in prison for participating in BEC scams targeting various companies. [Read More]
Mondoo plans to use the new funding to accelerate development of its cloud-native platform to provide developers with automated risk assessments. [Read More]
Threat hunters at ESET document a UEFI bootkit capable of hijacking the EFI System Partition (ESP) to maintain persistence on infected Windows machines. [Read More]
The Israeli startup raises new capital to build technology that automates the security and management of SaaS applications. [Read More]
Private equity firm Symphony Technology Group announced the merger of McAfee Enterprise and the newly acquired FireEye Products into a single pure-play cybersecurity company. [Read More]
Researchers discover a threat actor setting up a fake Amnesty International website to distribute phony anti-virus software. [Read More]
Mariana Trench is an open-source tool that Facebook's security team has used internally to identify vulnerabilities in Android and Java applications. [Read More]
- 1 of 60
- ››
FEATURES, INSIGHTS // Email Security
Leverage the power of the collective - the network effect – for its ever-evolving intelligence wherever possible to keep your employees free of all the bad stuff that has made it to their inboxes.
Leveraging humans for detection makes it hard for the attackers to predict whether or not their malicious emails will be identified and using technology to automate response provides scale and speed in resolution.
SPF, DMARC and DKIM are three email security methods that work together to prevent unauthorized third parties from sending emails on behalf of a domain.
Organizations may not be able to mitigate BEC scams entirely; however, tightening up processes will ensure data exposure is kept to a minimum.
By learning from the past there are many steps we can take to strength our approach to security as attackers continue to turn to email to help accomplish their mission.
“Evasive phishing" is not a term much heard, but we all will—and need to—start talking a lot more about it than we have in the past.
BEC is becoming increasingly profitable for threat actors as organizations are making it easy for adversaries to gain access to the valuable information that sits within these inboxes.
We should be thinking about how users work, what they do and how it affects the security posture of the business, but does security really start with them?
Ninety percent of breaches may begin with an email, but today most of the action happens well after an inbound email has been scanned and delivered.
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
- 1 of 4
- ››
Get the Daily Briefing
- Cyberattack Disrupts Services at Ecuador's Largest Bank
- Twitch Says Hack Impacted 'Small Fraction of Users'
- Russia-Linked TA505 Back at Targeting Financial Institutions
- Nations Vow to Combat Ransomware at US-Led Summit
- Ransomware Hit SCADA Systems at 3 Water Facilities in U.S.
- Researchers Disclose New Side-Channel Attacks Affecting All AMD CPUs
- Deepfence Open Sources Vulnerability Mapping Tool 'ThreatMapper'
- Juniper Networks Patches Over 70 Vulnerabilities
- S Korea Seeks Interpol Notice for Two Cyber Gang Leaders
- VirusTotal Shares Analysis of 80 Million Ransomware Samples
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy