HackDig : Dig high-quality web security articles for hackers

Microsoft Boosts Security of 365 Priority Accounts

Microsoft this week announced two new features meant to improve the security of priority accounts in Microsoft 365.The first of the new features is priority account protection, specifically designed for accounts that are common targets in attacks due to their access to sensitive information or to critical tools. These accounts, Microsoft notes, are extremely
Publish At:2020-11-20 01:11 | Read:155 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Identity & Access Man

Email Security Company Abnormal Security Raises $50 Million

Email security solutions provider Abnormal Security on Wednesday announced raising $50 million in a Series B funding round, which brings the total raised by the company to $75 million.The funding round was led by Menlo Ventures, and the company says it plans on using the money to double the size of its machine learning and data science teams.Abnormal Securit
Publish At:2020-11-18 14:05 | Read:126 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Management & Strategy

BEC Scammers Exploit Flaw to Spoof Domains of Rackspace Customers

A threat actor specializing in business email compromise (BEC) attacks has been observed exploiting a vulnerability to spoof the domains of Rackspace customers as part of its operations.UK-based cybersecurity company 7 Elements identified the vulnerability while conducting incident response activities for a customer. An analysis of the attack revealed that t
Publish At:2020-11-05 10:10 | Read:155 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Fraud & Identity Thef

Gone phishing: workplace email security in five steps

byDavid MitchellDavid Mitchell, Senior Director of Email Product Management at Sophos, shares his top tips to optimize workplace email security.How many work emails have you sent and received today? Despite the rise of workplace chat and instant messaging apps, for many of us email continues to dominate business communications both internally and externally.
Publish At:2020-10-06 11:06 | Read:339 | Comments:0 | Tags:BEC Phishing email phishing email security security

Cybercriminals Stole $15 Million From 150 Companies in BEC Attacks

A newly detailed business email compromise (BEC) campaign has resulted in more than $15 million being diverted from at least 150 organizations worldwide, cybersecurity company Mitiga reports.The threat actor behind the attacks relied exclusively on Office 365 to reduce suspicion on the utilized rogue email addresses, which were impersonating senior executive
Publish At:2020-10-01 12:04 | Read:492 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Fraud & Identity Thef

Google Patches Email Spoofing Vulnerability After Public Disclosure

Google released a patch for an email spoofing vulnerability affecting Gmail and G Suite seven hours after it was publicly disclosed, but the tech giant knew about the flaw since April.The vulnerability was disclosed on Wednesday by researcher Allison Husain, who described her findings in a blog post and shared proof-of-concept (PoC) code. The issue, related
Publish At:2020-08-20 14:59 | Read:388 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Vulnerabilities Vulnerabi

Academics Devise Attacks Targeting Email End-to-End Encryption

A group of academic researchers has devised practical attacks against major standards in email end-to-end encryption, which could lead to the exfiltration of sensitive information.The proposed attacks target the OpenPGP and S/MIME encryption schemes, and can be used to leak private keys and other data, researchers with the Ruhr University Bochum and Münster
Publish At:2020-08-19 11:57 | Read:378 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Vulnerabilities Data Prot

SANS Institute Says 28,000 User Records Exposed in Email Breach

The SANS Institute has disclosed a security incident which resulted in 28,000 records of personally identifiable information (PII) being forwarded to an unknown email address.The breach was discovered on August 6, during the review of email configuration and rules, according to the U.S.-based organization, which specializes in cybersecurity training, certifi
Publish At:2020-08-12 08:52 | Read:472 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Incident Response Data Pr

The Anatomy of Secure Remote Working- SecureLayer7

The pandemic of COVID-19 has changed the every day propensities for many individuals, and working schedules are no exception. With a large number of people abruptly changing to work from home, we’re seeing a tremorous move in how individuals work and organizations focusing on secure remote working. The level of telecommuters or remote workers has sw
Publish At:2020-08-08 13:29 | Read:563 | Comments:0 | Tags:Knowledge-base Security Advisory email security secure remot

Mimecast Acquires Messaging Security Provider MessageControl

Email and data security provider Mimecast on Thursday announced the acquisition of messaging security company MessageControl.Also known as eTorch, the Chicago-based MessageControl was founded in 2015 with a focus on preventing social engineering and identity attacks.The acquisition, Mimecast says, will strengthen its Email Security 3.0 strategy, which seeks
Publish At:2020-07-31 12:20 | Read:448 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Management & Strategy

Twitter Says Hackers Targeted 130 Accounts in Recent Attack

Approximately 130 accounts were targeted during the recent attack on Twitter, the social media giant has revealed.The accounts were compromised after the attackers managed to gain access to internal Twitter systems and tools. The hack became apparent after high-profile accounts such as those of Jeff Bezos, Joe Biden, Mike Bloomberg, Bill Gates, or Elon Musk
Publish At:2020-07-17 14:11 | Read:438 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Fraud & Identity Thef

COVID-19 Fuels Phishing and Scams While BEC Attacks Evolve and Increase

Between the second and third weeks of March 2020, email scams and phishing attacks spiked by an unprecedented 436%. Such was the effect of the COVID-19 pandemic. Meanwhile, business email compromise (BEC) attacks have been less affected by the pandemic, but have also increased and evolved.BEC attacks represent a low percentage of email attacks by volume, but
Publish At:2020-06-23 14:41 | Read:527 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Email Security Fraud

Google Sees Increase in COVID-19 Phishing in Brazil, India, UK

Cyber-threats taking advantage of the COVID-19 pandemic are evolving, and Google is seeing an increase in related phishing attempts in countries such as Brazil, India, and the UK.As the coronavirus crisis spreads worldwide, cyber-criminals and state-sponsored actors have adapted their attacks to leverage pandemic-related lures. In April, Gmail was seeing 18
Publish At:2020-06-12 12:18 | Read:635 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Email Security Malwa

Top UN Official Warns Malicious Emails on Rise in Pandemic

The U.N. disarmament chief warned Friday that cyber crime is on the rise, with a 600% increase in malicious emails during the COVID-19 pandemic.Izumi Nakamitsu told an informal meeting of the U.N. Security Council that the coronavirus crisis is moving the world toward increased technological innovation and online collaboration. But she said “there have also
Publish At:2020-05-26 03:20 | Read:1011 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Email Security Cyber

Over 6,400 Edison Mail Users Hit by Security Bug in iOS App

An update rolled out recently by Edison Mail for its iOS application resulted in some users being given access to other people’s email accounts. The company acted quickly to resolve the issue, but thousands may have been impacted.Edison Mail provides apps that allow users to manage their Gmail, Yahoo, Outlook, iCloud and other inboxes from one place. The com
Publish At:2020-05-18 13:53 | Read:741 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Vulnerabilities IOS

Tools