Email Security News, Articles and Updates

RNC's Preibus unwise to challenge hackers

RNC's Preibus unwise to challenge hackers

By

Republican National Committee (RNC) Chairman Reince Priebus may have tossed down a gauntlet to hackers when he declared that his organization's data is safe and he does not expect to be hacked.

Patchwork cyberespionage campaign branches out to strike businesses

Patchwork cyberespionage campaign branches out to strike businesses

By

The cybergang behind the Patchwork, aka Dropping Elephant, cyberespionage campaign has expanded its reach outside of government organizations and is now hitting the private sector.

Fake Tinder sites lure users to give up financial info

Fake Tinder sites lure users to give up financial info

In the UK, 41 percent of online daters have been spammed or scammed when using online dating services.

Locky campaign spamming at 200x normal rate: F-Secure

Locky campaign spamming at 200x normal rate: F-Secure

By

Researchers from F-Secure reported a massive spike in spam delivering the Locky cryptoransomware with 120,000 spam emails going out per hour on June 12.

Business email compromise (BEC) phishing scams netting billions for criminals

Business email compromise (BEC) phishing scams netting billions for criminals

Your next scam du jour: targeted stings and swindles based on impersonating key personnel are hitting as many as 400 companies a day.

Phishing scheme exploiting illegal downloads of Game of Thrones

Phishing scheme exploiting illegal downloads of Game of Thrones

By

Viewers illegally downloading Game of Thrones are being visited by dragons of a 21st century variety: phony notices of violation.

Spike in cyberattacks expected to exploit upcoming Olympics, report

Spike in cyberattacks expected to exploit upcoming Olympics, report

By

An Israel-based security firm has issued a warning to fans of the upcoming Olympics to be wary of phony offers.

Phishing scam targets Brexit anxiety

Phishing scam targets Brexit anxiety

By

A cyberscam has been unfolding in the wake of the Brexit vote.

419 scam entices with lottery win

419 scam entices with lottery win

By

A new phishing campaign, purportedly from a family foundation, offers "randomly selected" individuals 1 million pounds ($1.3 million) - if they provide personal details.

Troublemaking Bart ransomware follows in Dridex and Locky's footsteps

Troublemaking Bart ransomware follows in Dridex and Locky's footsteps

By

A newly discovered ransomware named Bart doesn't need to connect with a command-and-control server in order to encrypt victims' files, meaning even the strongest corporate firewalls may be unable to stop Bart from rendering a PC ineffective.

Microsoft Office 365 hit with massive Cerber ransomware attack, report

Microsoft Office 365 hit with massive Cerber ransomware attack, report

By

Updated: Millions of Microsoft Office 365 users were potentially exposed to a massive zero-day Cerber ransomware attack last week.

German-speaking users targeted in new malware campaign

German-speaking users targeted in new malware campaign

By

German and Austrian computer users are being targeted with a new malware campaign.

Ransomware awareness and fear growing: Study

Ransomware awareness and fear growing: Study

By

When faced with a situation where a firm's critical data has been locked up by a ransomware attack and irretrievable by backup, close to half of the companies surveyed by KnowBe4 for its latest ransomware survey said they would pay the ransom to get their systems back online.

New RAA ransomware written in JavaScript discovered

New RAA ransomware written in JavaScript discovered

By

A new variety of ransomware called RAA has been discovered that has the somewhat unusual attribution of being coded in JavaScript instead of one of the more standard programming languages making it more effective in certain situations.

Ransomware migrates from Angler to Neutrino

Ransomware migrates from Angler to Neutrino

By

Following the shuttering of the Necurs botnet, security researchers noticed a subsequent drop in Angler exploit kits and other malware campaigns.

Newly discovered malware campaign adds to TeamViewer's account hijacking woes

Newly discovered malware campaign adds to TeamViewer's account hijacking woes

By

TeamViewer continues to assert that poor password management is the chief cause behind a spate of user account hijackings, but a new alert from Trend Micro suggests that a malware campaign could be another piece to the puzzle.

Leakedsource.com finds 45M leaked VerticalScope user records

Leakedsource.com finds 45M leaked VerticalScope user records

By

The outdoor and motorsports-centric website aggregator VerticalScope was hacked according to an industry watchdog with about 45 million records from more than 1,100 websites being taken and posted to the internet.

New phishing scam siphoning PayPal user credentials

New phishing scam siphoning PayPal user credentials

By

Users of PayPal are being targeted in a new phishing scheme that steals their credentials.

Clear path to Verizon email accounts patched

Clear path to Verizon email accounts patched

By

A vulnerability that could have allowed attackers to hijack incoming emails from Verizon users' inboxes without their knowledge was detected and, a month later, patched.

Hackers impersonate CEOs and CFOs most often during phishing attack

Hackers impersonate CEOs and CFOs most often during phishing attack

By

All it takes is one of three words and impersonating the correct executive to pull off a successful Business Email Compromise attack, according to a new Trend Micro report.

Low-profile Crysis ransomware suddenly stealing the show

Low-profile Crysis ransomware suddenly stealing the show

By

Researchers at ESET have discovered that an under-the-radar ransomware known as Crysis has been silently and quickly gaining momentum, and is currently even more prevalent than Locky.

Cyren warns of new bitcoin phishing site in the wild

Cyren warns of new bitcoin phishing site in the wild

Speaking to SCMagazineUK.com, Lior Kohavi, CTO at Cyren, revealed a phishing site that aims to steal credentials from Bitcoin blockchain users.

Guilty pleas for two spammers behind heist of 60M accounts

Guilty pleas for two spammers behind heist of 60M accounts

By

Guilty pleas were entered by two men for a range of computer fraud charge said to have netted $2 million in ill-gotten gains.

Constructive Disclosure

Constructive Disclosure

This is going to be a bit different from my usual blog postings but I think the time is good for this discussion for several reasons. First, the notion of constructive and responsible disclosure of bugs is a clear issue for threat hunters.

 Reeling in workers: Social engineering

Reeling in workers: Social engineering

By

When it comes to finding a scapegoat after a company falls victim to a spearphishing scam, pointing toward the human being in the room typically isn't unjustified or unfair.

Ransomware threats tied to data breaches growing, IC3

Ransomware threats tied to data breaches growing, IC3

By

The Internet Crime Complaint Center (IC3) issued a Public Service Announcement regarding the growing number of individuals who have been filing reports with the center.

State Dept. asks court to reject Republican Party FOIA request for Clinton emails

State Dept. asks court to reject Republican Party FOIA request for Clinton emails

By

The U.S. Department of State is asking a U.S. District Court to deny a FOIA request by the Republican National Committee for emails from Hillary Clinton.

CryptoLocker partially shuts down Pinal County, Ariz. government network

CryptoLocker partially shuts down Pinal County, Ariz. government network

By

The computer network of the Pinal County Attorney's Office in Arizona has been hit with CryptoLocker, effectively shutting down part of the agency's system.

Upgraded Dridex malware on the rebound, hitting U.S. banks

Upgraded Dridex malware on the rebound, hitting U.S. banks

By

A new and more dangerous version of the Dridex banking malware is being used in a new campaign targeting financial institutions, primarily in the United States.

Users warming up to replacing traditional passwords with next-level authentication

Users warming up to replacing traditional passwords with next-level authentication

By

A new study has come to light in which 52 percent of surveyed consumers said they would prefer a more modernized method of user authentication, such as biometrics, over traditional username and password mechanisms.

RECENT COMMENTS

Sign up to our newsletters

FOLLOW US