HackDig : Dig high-quality web security articles for hacker

Microsoft to Add Compromised Password Notification to Edge

Microsoft on Monday announced several new features for its Edge web browser, including one that will alert users if the credentials they have saved to autofill have been compromised as a result of a third-party data breach.Online services often get hacked and these intrusions can result in millions of username and password combinations getting stolen. While
Publish At:2020-03-30 16:09 | Read:170 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Email Security Fraud & Ident

Corporate Workers Warned of 'COVID-19 Payment' Emails Delivering Banking Trojan

IBM and FireEye have spotted a campaign that relies on fake “COVID-19 Payment” emails to deliver the Zeus Sphinx banking trojan to people in the United States, Canada and Australia.FireEye, which tracks the malware as SILENTNIGHT, reported seeing the malicious emails in the inboxes of “individuals at corporations across a broad set of industries and geograph
Publish At:2020-03-30 12:22 | Read:133 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Email Security Phish

GE Says Some Employees Hit by Data Breach at Canon

General Electric (GE) revealed last week that the personal information of some employees may have been compromised as a result of a data breach suffered by Canon Business Process Services.In a data breach notification sent to affected individuals and submitted to the California Attorney General, GE said an unauthorized party gained access to a Canon email ac
Publish At:2020-03-25 07:11 | Read:203 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Incident Response Cybercr

Russian Cyberspies Hacked High-Profile Email Accounts for Phishing

The Russia-linked cyber-espionage group known as Pawn Storm has been leveraging hijacked email accounts to send phishing emails to potential victims, Trend Micro’s security researchers reveal.Active since at least 2004, the group is also referred to as APT28, Sednit, Fancy Bear, and Strontium, and is believed to be sponsored by Russia’s GRU intelligence agen
Publish At:2020-03-20 13:22 | Read:341 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Email Security Cyber

ProtonMail, ProtonVPN Will Use Alternative Routing to Bypass Censorship

Privacy-focused services provider Proton Technologies is deploying a new system to ensure that its email and VPN applications continue to be accessible even in scenarios where governments or ISPs attempt to block them.Focused on helping users keep their personal information safe, the company’s encrypted services — ProtonMail, ProtonVPN, ProtonCalendar (in be
Publish At:2020-03-16 10:45 | Read:222 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Email Security Privacy & Com

Nearly 1 Million Domains Use DMARC, but Only 13% Prevent Email Spoofing

Nearly one million domains use DMARC, but only 13% of them are configured to actually prevent email spoofing, according to a report published this week by anti-phishing solutions provider Valimail.DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication, policy, and reporting protocol designed to detect and prevent em
Publish At:2020-03-05 15:55 | Read:277 | Comments:0 | Tags:NEWS & INDUSTRY Email Security

ProtonMail Fights Email Spoofing With New DKIM Key Management Feature

ProtonMail on Thursday introduced a new feature designed to make it more difficult for hackers and spammers to impersonate users who have custom domain email addresses.The new feature, DKIM key management, is currently in beta and users have been encouraged to share feedback to help ProtonMail developers improve it.Email addresses are often spoofed for phish
Publish At:2020-02-28 14:56 | Read:371 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Identity & Access

OpenSMTPD Vulnerability Leads to Command Injection

An update released this week for the OpenSMTPD mail server addresses an out-of-bounds read vulnerability that could lead to arbitrary command execution.OpenSMTPD is the open source implementation of the Simple Mail Transfer Protocol (SMTP) in OpenBSD, and its portable version can run on multiple Linux distributions, and Apple’s Mac OS X platform.Tracked as C
Publish At:2020-02-26 09:10 | Read:438 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Vulnerabilities Vulnerabi

BEC Group Abuses Google G Suite in Scheme Targeting Thousands of Firms

A group of business email compromise (BEC) scammers that targeted thousands in the United States employed Google’s G Suite for their infrastructure, Agari reports.More than 3,000 employees at nearly 2,100 companies were targeted by the same scammers over the course of five months alone, between April and August 2019, the security firm says. The targets were
Publish At:2020-02-25 07:16 | Read:242 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Email Security Fraud

Top Email Security Threats of 2020 – How To Stop Them

As hackers’ methods become more sophisticated, the scale of email security breaches and the frequency at which they occur grow greater with each passing year. In 2019 alone, an estimated 2 billion unique email addresses, accompanied by over 21 million unique passwords, were exposed within a single data breach. After the initial panic, it became clear that br
Publish At:2020-02-20 03:05 | Read:341 | Comments:0 | Tags:IT Security and Data Protection email security insider threa

Threat From Spoofed Emails Grows, While DMARC Implementation Lags

Email remains the biggest single cyber threat to business. Phishing can introduce malware either directly or later via stolen credentials, while BEC scam emails can lead to direct financial loss.Phishing has two costs. The most obvious is compromise-related, such as January's $240,000 ransom payment by the University of Maastricht following a successful phis
Publish At:2020-02-15 16:11 | Read:167 | Comments:0 | Tags:NEWS & INDUSTRY Email Security

Coronavirus-Themed Emails Deliver Malware, Phishing, Scams

Several cybersecurity companies have spotted campaigns that use coronavirus-themed emails to deliver malware, phishing attempts and scams.The new coronavirus outbreak, which started in China, has made a lot of headlines recently and has caused global panic. Over 40,000 infections have been confirmed and the death toll has exceeded 1,000. The virus has been n
Publish At:2020-02-12 02:11 | Read:480 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Email Security Phish

Presidential Candidates' Use of DMARC Improves, but Remains Short of Optimum

Presidential candidates' protection of their domains is improving, but could improve further. More specifically, of the 15 current candidates, eight now protect their domains from email spoofing with enforced DMARC. In May 2019, when there were still 23 candidates, only three were protected by DMARC.DMARC (Domain-based Message Authentication, Reporting,
Publish At:2020-02-10 16:58 | Read:255 | Comments:0 | Tags:NEWS & INDUSTRY Email Security

Serious Vulnerability Discovered in OpenSMTPD

Researchers at cybersecurity firm Qualys have identified a potentially serious vulnerability in OpenSMTPD that can allow remote command execution with elevated privileges.OpenSMTPD is the OpenBSD Project’s free and open source implementation of the Simple Mail Transfer Protocol (SMTP). The portable version of OpenSMTPD can run on various BSD and Linux distri
Publish At:2020-01-29 22:15 | Read:446 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Vulnerabilities Vulnerabi

Russia Blocks Swiss-based ProtonMail Over Wave of Bomb Threats

Russia has blocked a second encrypted email provider, Swiss-based ProtonMail, in efforts to halt a prolonged series of anonymous bomb threats, the security service said Wednesday.The FSB security service said Russia acted against Geneva-based ProtonMail after blocking another social network, Netherlands-based Smartmail, for the same reason last week.ProtonMa
Publish At:2020-01-29 10:15 | Read:370 | Comments:0 | Tags:NEWS & INDUSTRY Email Security

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud