Cyber Security Informer

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Analyzing the Email Security Landscape and exploring Emerging Threats and Trends. Amidst this dynamic landscape, email stands as a primary battleground for cyber defense. Key Findings from the “Email Security in 2024” Report In an exhaustive review, VIPRE processed 7.2 million as malicious.

Phishing

Phishing Identity Theft Scams Malware

NEW TECH: How the emailing of verified company logos actually stands to fortify cybersecurity

The Last Watchdog

JULY 26, 2021

Related: Dangers of weaponized email. Henceforth companies will be able to insert their trademarked logos in Gmail’s avatar slot; many marketers can’t wait to distribute email carrying certified logos to billions of inboxes. It basically means DMARC does nothing, except collect information about who is sending spoofed emails.

Marketing

Marketing Cybersecurity Phishing Authentication

Hackers hit 10,000 mailboxes in phishing attacks on FedEx and DHL Express

SC Magazine

FEBRUARY 23, 2021

Researchers reported Tuesday that they found two email phishing attacks targeting at least 10,000 mailboxes at FedEx and DHL Express that look to extract a user’s work email account. The email titles, sender names, and content did enough to mask their true intention and make victims think the emails were from FedEx and DHL.

Phishing

Phishing Social Engineering Accountability Technology

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

“FudCo” Spam Empire Tied to Pakistani Software Firm

Krebs on Security

SEPTEMBER 6, 2021

In May 2015, KrebsOnSecurity briefly profiled “ The Manipulaters ,” the name chosen by a prolific cybercrime group based in Pakistan that was very publicly selling spam tools and a range of services for crafting, hosting and deploying malicious email. Also we are running business since 2006.” Image: Facebook.

Software

Software Phishing Cybercrime Accountability

Automate your way to success with Cisco SecureX

Cisco Security

JANUARY 22, 2021

On top of the never-ending list of alerts in his inbox every morning, he is building playbooks, threat hunting, scanning news for the latest attack updates, and investigating alerts. Attempting to counter attacks with manual processes is like fighting a losing battle against relentlessly active adversaries.

Phishing

Phishing Scams Risk Technology

Ransomware Groups Look for Inside Help

eSecurity Planet

AUGUST 23, 2021

A researcher with email security solutions vendor Abnormal Security found a threat actor directly emailing employees of a company urging them to release the ransomware into a company computer or Windows server in return for 40 percent – about $1 million – of the expected $2.5 million ransom the company would pay.

Ransomware

Ransomware Social Engineering Engineering VPN

Twitter's Cyber Attack and Takeover: It Was Spear Phishing

SecureWorld News

JULY 31, 2020

Even the title of SecureWorld's first story about the incident had questions: "Famous Twitter Accounts Hacked: Insider Threat or Social Engineering Attack?". Accessing the DM inbox of 36. Spear phishing: what security experts are saying. We all know how damaging a spear phishing attack can be.

Phishing

Phishing Cyber Attacks Social Engineering Accountability

Gift Card Gang Extracts Cash From 100k Inboxes Daily

Krebs on Security

SEPTEMBER 2, 2021

Here’s the story of a cybercrime group that compromises up to 100,000 email inboxes per day, and apparently does little else with this access except siphon gift card and customer loyalty program data that can be resold online. “These guys are looking for low-hanging fruit — basically cash in your inbox.

Accountability

Accountability Authentication Passwords Hacking

Network Footprints of Gamaredon Group

Cisco Security

MAY 12, 2022

Threat actors picking sides [1], group members turning against each other [2], some people handing out DDoS tools [3], some people blending in to turn it into profit [4], and many other stories, proving that this new frontier is changing daily, and its direct impact is not limited to geographical boundaries. ru was the main registrant email.

Malware

Malware DNS DDOS Phishing

Seized Genesis Market Data is Now Searchable in Have I Been Pwned, Courtesy of the FBI and "Operation Cookie Monster"

Troy Hunt

APRIL 5, 2023

This breach has been flagged as "sensitive" which means it is not publicly searchable , rather you must demonstrate you control the email address being searched before the results are shown. That's the short version, here's the whole story: Ever heard that saying about how "data is the new oil"?

Marketing

Marketing Passwords Authentication Accountability

The Joys of Owning an ‘OG’ Email Account

Krebs on Security

SEPTEMBER 2, 2020

When you own a short email address at a popular email provider, you are bound to get gobs of spam, and more than a few alerts about random people trying to seize control over the account. What is endlessly fascinating is how many people think it’s a good idea to sign up for important accounts online using my email address.

Accountability

Accountability Backups Authentication Hacking

Calling Home, Get Your Callbacks Through RBI

Security Boulevard

JANUARY 17, 2024

Most RBI security vendors supplement their solution with extra email protections to block the delivery of malware via user inboxes along with scanning, sanitizing, and blocking malicious downloads from any site. iso file instead of getting blocked like our previous ClickOnce attempt (Figure 11).

DNS

DNS Penetration Testing Passwords Encryption

Harnessing AI to combat fraud and abuse - AI is the key to robust defenses

Elie

APRIL 18, 2018

Following the natural progression of building and launching an AI-based defense system, the second post will cover the challenges related to training, the third will delve into classification issues and the last one will look at how attackers attempt to attack AI-based defenses. The New York Times story has. slides here.

Artificial Intelligence

Artificial Intelligence Phishing Technology Malware

Why AI is the key to robust anti-abuse defenses

Elie

APRIL 18, 2018

its decision to close the comment sections because it couldn't keep up with the trolls that rentelessy attempted to derail the conversation :-(. More generally, many online services, including games and recommendation services, are struggling to keep up with the continuous onslaught of abusive attempts. The New York Times story has.

Artificial Intelligence

Artificial Intelligence Phishing Technology Malware

Advanced Phishing 201: How to Prevent Phishing from Impacting Your Users

Duo's Security Blog

MAY 10, 2023

With advanced language-based AI tools like ChatGPT growing increasingly accessible, the battle to prevent phishing attacks from impacting users is no longer answerable with just one security solution. Why is layered security essential against phishing? PCI DSS, HIPAA, etc.)

Phishing

Phishing DNS Authentication Risk

Cyber Security Informer

Unmasking 2024’s Email Security Landscape

NEW TECH: How the emailing of verified company logos actually stands to fortify cybersecurity

Webinars

Trending Sources

Hackers hit 10,000 mailboxes in phishing attacks on FedEx and DHL Express

Webinars

“FudCo” Spam Empire Tied to Pakistani Software Firm

Automate your way to success with Cisco SecureX

Ransomware Groups Look for Inside Help

Twitter's Cyber Attack and Takeover: It Was Spear Phishing

Gift Card Gang Extracts Cash From 100k Inboxes Daily

Network Footprints of Gamaredon Group

Seized Genesis Market Data is Now Searchable in Have I Been Pwned, Courtesy of the FBI and "Operation Cookie Monster"

The Joys of Owning an ‘OG’ Email Account

Calling Home, Get Your Callbacks Through RBI

Harnessing AI to combat fraud and abuse - AI is the key to robust defenses

Why AI is the key to robust anti-abuse defenses

Advanced Phishing 201: How to Prevent Phishing from Impacting Your Users

Stay Connected