Email Security News, Articles and Updates

Analysis of email address in Mueller indictments exposes 9M weaponized email accounts

GroupSense researchers investigating an email address affiliated with Russia's Internet Research Agency for evidence of a botnet meant to exert influence on public opinions.

Trump election security meeting results in no new measures

President Trump held a meeting with top advisors on Friday to discuss security for the upcoming 2018 midterm elections, but the only reported result was a statement reiterating the administration's stance that it will not tolerate outside interference.

Iranian cyber activity on the rise with Leafminer, OilRig leading the way

Iran has once again found itself in the crosshairs of cybersecurity researchers with Palo Alto Networks' Unit 42, Symantec and the German intelligence all pointing accusatory fingers at Tehran over several recently revealed cyber campaigns.

Blacksburg bank loses $2.4 million after two phishing attacks

Bank robbers often stick up the same bank twice, but a recent lawsuit between a Virginia bank and its insurer revealed the bank lost $2.4 million when staffers twice fell for phishing attacks resulting in illegal ATM withdrawals.

With deadline looming, 74 percent of fed gov't domains implement DMARC

GCA said more than 600 agency email domains are set to DMARC's "reject" setting with 26 set to "quarantine," the next highest security level.

Jersey woman charged with allegedly hacking Selena Gomez's email

A New Jersey woman who allegedly couldn't keep her hands to herself was formally charged in Los Angeles County on July 13 with hacking the email accounts of actress and singer Selena Gomez and her associate.

Spambots launch last minute World Cup-themed hi attacks

With the World Cup winding up this weekend, malicious actors are hustling out the last of their World Cup-based attacks in an attempt to obtain a few more victims.

Updated Rakhni malware strain can be ransomware or a cryptominer

The five-year-old Trojan-Ransom.Win32.Rakhni family has received a facelift that now allows it to decide whether or not to install its traditional ransomware or to drop a cryptominer instead.

Smoke Loader gains PROPagate injection capability

An updated version of the Smoke Loader malware downloader has been sampled in the wild and was found to contain one of the first successful uses of the PROPagate injection technique uses in an actual attack.

Threat actors behind Necurs rolling out new abilities on a monthly basis

Even after six years in the wild, the team behind the Necurs is finding new uses for its malware botnet.

270,000 Med Associates records possibly compromised in data breach

Healthcare claims services provider Med Associates is notifying its patients that the facility suffered a data breach in March potentially exposing PII, including medical diagnosis and payment card information.

Errant email exposes PII of Chicago Public School systems students

A Chicago Public Schools (CPS) worker accidentally emailed private student information to more than 3,700 families who have students in the system.

MuddyWater trojan campaign adds a few new notes

The malicious actors behind the MuddyWater campaign have given the malware a facelift changing the way the malicious files are executed and altering the social engineering used to entice its victims to open the infected Word document.

HealthEquity breach exposes PII of 23,000 customers

About 23,000 accounts have been compromised by a data breach that took place at HealthEquity when an employee fell for a phishing scam.

Law enforcement operation scoops up 74 BEC scammers

In a wide-ranging operation, six-month-long operation that spanned three continents 74 individuals were arrested for operating a large-scale business email compromise (BEC)scheme.

Dignity Health discloses multiple data breaches to HHS

The San Francisco-based health care facilities operator Dignity Health recently experienced an accidental email breach affecting 55,947 patients, according to a May 31 disclosure form the not-for-profit corporation filed with the U.S. Department of Health and Human Services.

Cambridge Analytica exec met with Assange in 2017 to discuss election, donated cryptocurrency to WikiLeaks

Brittany Kaiser, a director at the data analytics company, told friends she visited Assange on February 17, 2017, and also had donated to the whistleblower site via cryptocurrency.

Hackers hijack SpamCannibal, spam users with false notifications

All queries to the website's blacklist received a positive response so that spam filters believed the IP addresses were blacklisted.

Hacker with Russian intel ties pleads guilty to gmail hacks

23-year-old Canadian citizen Karim Baratov pleaded guilty to federal conspiracy and identity theft in November.

Cobalt shrugs off arrests, resumes cyberattacks on banks

The arrest of several leaders of the Cobalt cybergang, including its leader, has not stopped the group from launching additional attacks with the most recent being tracked late last week.

Scammers using FIFA World Cup as a lure

The FIFA World Cup is set to start in less than two weeks, and just like the Seoul Winter Olympics cybercriminals are lining up to take advantage of fans searching for tickets or deals.

That smarts! 'Brain Food' spam botnet malware found on thousands of websites

A spam campaign called Brain Food has been feeding email recipients a steady diet of junk messages containing links to pages promoting bogus intelligence-boosting supplements and diet pills.

Attempts to terminate new WinstarNssmMiner cryptominer result in computer crash

Computers users infected with the newly observed cryptojacking malware WinstarNssmMiner will be surprised to discover that the nasty malware crashes their machines if they try to terminate the program, making it difficult to remove.

The Oregon Clinic patient PHI exposed via email breach

The Oregon Clinic discovered on March 9 that an unauthorized third party had accessed an email account possibly exposing the personal health information for some of its patients.

New Apple ID phishing operation protects web assets with AES encryption

A recently discovered email phishing campaign was found targeting Apple ID credentials, while using AES encryption to thwart active countermeasures against their malicious website.

Vega Stealer malware targeting marketing, public relations and advertising sectors

Researchers have come across a new ransomware variant named Vega Stealer that is taking special aim at those in the marketing, advertising, public relations and retail/manufacturing industries.

USB drive sniffing K-9 helps capture student hacker

A San Francisco Bay-area student accused of hacking his school's computer system to change grades was captured with the aid of a K-9 unit when its dog was able to sniff out a thumb drive holding incriminating evidence.