Email Security

Researchers uncover possible Iranian-backed phishing scam

Researchers uncover possible Iranian-backed phishing scam

By

Canadian researchers at Citizen Lab released a report today describing a phishing campaign being conducted against Iranian dissidents and how utilizing a two-factor authentication (2FA) tool helped foil most of the attacks.

E-ZPass users targeted in phishing scam

E-ZPass users targeted in phishing scam

By

Drivers in the Washington, D.C. metro area are being targeted by a phishing scam that purports to come from E-ZPass.

Pentagon questions validity of data tweeted by the Islamic State Hacking Division

Pentagon questions validity of data tweeted by the Islamic State Hacking Division

By

The Pentagon said the names,emails and passwords uploaded to Twitter by a group calling itself the Islamic State Hacking Division appear to be not only out of date and incorrectly formatted.

Joint Chiefs of Staff's email system back online after phishing hack

By

The U.S. Joint Chiefs of Staff's unclassified email system was brought back online yesterday after being shut down for two weeks when a phishing scam, possibly by the Russian group Apt 29, was discovered.

U.K. ham radio operators spammed with malware

By

U.K. ham radio operators are the target of a phishing scam asking them to open a malware-infected attachment purportedly from Ofcom Spectrum Licensing.

Attackers use fake British Gas site to spread TorrentLocker

By

Researchers have seen an uptick in TorrentLocker infections in the U.K. and Turkey.

SendGrid admits breach more extensive than originally believed

By

SendGrid said the breach occurred after an employee account was compromised.

Bitcoin exchange compromised through SendGrid account

By

In an attack very similar to one last year, a SendGrid customer was compromised through its mail service account.

Experts discover phishing campaign leveraging .gov TLD loophole

By

Researchers have picked up on a new spam campaign that sends victims phishing messages from a .gov account that thwarts email validation systems.

Clinton emails uncrypted for 3 months, AP sues State for access

By

Hillary Clinton's emails went unencrypted for the first three months she was secretary of state but have been encrypted since.

Hillary Clinton says private email system was not breached

Hillary Clinton says private email system was not breached

By

Clinton said that the private email system she used during her tenure as Secretary of State was "effective and secure."

Clinton's use of private email spawns security, transparency debate

Clinton's use of private email spawns security, transparency debate

By

Hillary Clinton used a private email account during her tenure as secretary of state.

Hillary Clinton used personal email for State business

By

Former Secretary of State Hillary Clinton is catching flak for exclusively using her personal email account to do business for the four years she was at the State Department.

Researchers observe spike in tax return phishing schemes

By

Spoofed emails claiming to be from the IRS and TurboTax are on the rise with attackers aiming to swipe personal information to ultimately steal tax refunds.

Phishing scam uses LinkedIn 'security update' to steal credentials

By

Symantec warns of a phishing campaign that fools victims with fake emails from LinkedIn Support.

Secure your email not just your email account

Secure your email not just your email account

Email security is a problem that continues to pop up in the news every two weeks and something needs to change.

New report sheds light on National Research Council breach

By

The organization alerted partner companies of a breach that took place in July, in which attackers attempted to glean sensitive information.

Cybercriminals leverage new tactic to spread Dyre malware

By

Users who are duped and open up an attachment that claims to be a voice message become infected with the info-stealing malware.

Asprox spammers use timely, but malicious, emails to trick holiday shoppers

By

Phishing emails are made to look like order confirmations from major retailers, like Best Buy, Target and Walmart, security firm Malcovery warns.

Phishing campaign spoofs emails from Costco, Home Depot

By

The latest ruse leverages the uptick in holiday shopping in order to lure victims into giving up personal information.

Cousin of Bugat trojan, 'Dridex,' spreads using macros

Cousin of Bugat trojan, 'Dridex,' spreads using macros

By

Trend Micro detailed the variant and attackers' delivery techniques.

Researchers notice uptick in 'Poweliks' trojan infections

By

The increase could be attributed to a recently discovered spam campaign that involves phony emails claiming to be from the Canadian Post or USPS.

Compromised .edu domain used to spread Zeus-laden emails

By

Researchers at PhishMe warned of the campaign that uses purported payment confirmations to fool victims.

Latest Ebola-themed phish leverages unpatched Windows bug

By

The bug, CVE-2014-6352, has a temporary solution, but still no permanent fix from Microsoft.

Cybercriminals continue to piggyback on Ebola news

By

Email samples discovered by researchers at Trustwave reveal how attackers are infecting users with the DarkComet Remote Access Trojan.

N.M. man, who intercepted governor's emails, sentenced to nine months

By

Jaime Estrada was sentenced to nine months in prison and was ordered to pay a $10,000 fine.

Google to warn users if hackers are state sponsored

By

Google announced Tuesday that it will begin warning Gmail users if they are being targeted by state-sponsored attacks in hopes that they can take "immediate steps" to secure their accounts.

2012 Olympics malware already circulating

By

Researchers at security firm F-Secure said this week they have spotted a malicious PDF making the rounds that opens a legitimate copy of the Games' schedule, but in the background it tries to connect to a malicious website.

Flight check-in emails lead to Zeus infection

By

Cyber criminals have cloaked spam to resemble US Airways check-in emails in phishing attempts that lead to Zeus trojan infections.

Trustwave buys M86 to bolster research, managed offerings

By

Trustwave, a cloud-based compliance and information security solutions provider, announced on Tuesday it will acquire M86 Security, a web security solutions and anti-malware provider.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US