Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The Canadian data security startup closes a Series A funding round to expand its data discovery and classification offerings. [Read More]
According to a Wall Street Journal report, TikTok used a banned tactic to bypass the privacy safeguard in Android to harvest unique identifiers from millions of mobile devices. [Read More]
Mimecast learned from Microsoft that one of its certificates was compromised by sophisticated threat actors, but the email security firm says impact is limited. [Read More]
German software maker SAP has published 10 bulletins with fixes for a range of serious security vulnerabilities. [Read More]
The U.S. chipmaker is adding hardware to the arsenal of tools available to defend against destructive and costly ransomware attacks. [Read More]
Trend Micro warns that a previously unknown threat actor is targeting multiple organizations, including government entities, research institutions, and universities in Taiwan. [Read More]
New ransomware using strong encryption scheme to prevent decryption of hijacked data. [Read More]
The combined entity offers more than a half-dozen security solutions for data security risk detection and cyber-attack protection, response, and recovery. [Read More]
Cybercriminals employ COVID-19 vaccine-related schemes to obtain personal information and money from unsuspecting victims. [Read More]
A researcher earned over $13,000 from Facebook for a flaw that exposed the email address and birth date of Instagram users via the Facebook Business Suite. [Read More]
- 1 of 34
- ››
FEATURES, INSIGHTS // Email Security
Organizations may not be able to mitigate BEC scams entirely; however, tightening up processes will ensure data exposure is kept to a minimum.
By learning from the past there are many steps we can take to strength our approach to security as attackers continue to turn to email to help accomplish their mission.
“Evasive phishing" is not a term much heard, but we all will—and need to—start talking a lot more about it than we have in the past.
BEC is becoming increasingly profitable for threat actors as organizations are making it easy for adversaries to gain access to the valuable information that sits within these inboxes.
We should be thinking about how users work, what they do and how it affects the security posture of the business, but does security really start with them?
Ninety percent of breaches may begin with an email, but today most of the action happens well after an inbound email has been scanned and delivered.
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
To mitigate the risk of attacks, IT teams should disable unused tools and components, while deploying endpoint protection that doesn’t rely solely on file scanning or whitelisting.
DMARC is an email authentication standard designed to eliminate phishing and other types of attack that use spoofing to misrepresent an email sender identity.
Endpoint protection will never be able to catch up with “known wolves,” but machine learning and artificial perception can change the rules of engagement with models of “known good.”
- 1 of 4
- ››
Get the Daily Briefing
- Google Warning: North Korean Gov Hackers Targeting Security Researchers
- South Carolina County Suffers Weekend Cyberattack
- Phishers Target C-Suite with Fake Office 365 Password Expiration Reports
- Passwordless Authentication Provider Axiad Raises $20 Million
- Clothing Brand Bonobos Notifies Users of Data Breach
- Packaging Giant WestRock Says Ransomware Attack Impacted OT Systems
- CrowdStrike Discloses Details of Recently Patched Windows NTLM Vulnerability
- Russian Hack of US Agencies Exposed Supply Chain Weaknesses
- Industrial Firms Informed About Serious Vulnerabilities in Matrikon OPC Product
- Illinois Court Exposes More Than 323,000 Sensitive Records
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy