A critical-severity vulnerability in Zimbra has been exploited in the wild to deploy a web shell on vulnerable servers.
The post Critical Zimbra Vulnerability Exploited One Day After PoC Release appeared first on SecurityWeek.
Unlocking the Front Door: Phishing Emails Remain a Top Cyber Threat Despite MFA
SecurityWeek spoke with Mike Britton, CISO at Abnormal Security, to understand what the company has learned about current social engineering and phishing attacks.
The post Unlocking the Front Door: Phishing Emails Remain a Top Cyber Threat Despite MFA appeared first on SecurityWeek.
Abnormal Security Raises $250 Million at $5.1 Billion Valuation
Email security firm Abnormal Security has raised $250 million in a Series D funding round at a $5.1 billion valuation.
The post Abnormal Security Raises $250 Million at $5.1 Billion Valuation appeared first on SecurityWeek.
Vulnerabilities Enable Attackers to Spoof Emails From 20 Million Domains
Vulnerabilities in hosted email services allow attackers to spoof the identity of senders, bypassing security measures.
The post Vulnerabilities Enable Attackers to Spoof Emails From 20 Million Domains appeared first on SecurityWeek.
Information of Hundreds of European Politicians Found on Dark Web
The email addresses and other information of hundreds of British, French and EU politicians have been found on the dark web.
The post Information of Hundreds of European Politicians Found on Dark Web appeared first on SecurityWeek.
KnowBe4 Plans to Acquire Egress for Email Security Tech
KnowBe4 boasts that the merger will create “the largest, advanced AI-driven cybersecurity platform for managing human risk.”
The post KnowBe4 Plans to Acquire Egress for Email Security Tech appeared first on SecurityWeek.
IMF Emails Hacked
The International Monetary Fund (IMF) detects a cybersecurity incident that involved nearly a dozen email accounts getting hacked.
The post IMF Emails Hacked appeared first on SecurityWeek.
Domains Once Owned by Major Firms Help Millions of Spam Emails Bypass Security
8,800 domains, many once owned by major companies, have been abused to get millions of emails past spam filters as part of SubdoMailing campaign.
The post Domains Once Owned by Major Firms Help Millions of Spam Emails Bypass Security appeared first on SecurityWeek.
HPE Says Russian Government Hackers Had Access to Emails for 6 Months
HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months.
The post HPE Says Russian Government Hackers Had Access to Emails for 6 Months appeared first on SecurityWeek.
SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols
A new attack technique named SMTP Smuggling can allow malicious actors to send out spoofed emails that bypass authentication mechanisms.
The post SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols appeared first on SecurityWeek.