Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Email security firm, Mimecast, has acquired Simply Migrate (a cloud migration specialist) for an undisclosed sum on January 29, 2019. [Read More]
Microsoft Exchange 2013 and newer versions allow an attacker to escalate privileges when performing a NT LAN Manager (NTLM) relay attack. [Read More]
Spam campaigns that have active during the last several months have been distributing the Redaman banking malware, Palo Alto Networks security researchers say. [Read More]
Alphabet’s Jigsaw unit has published a quiz that tests users’ ability to identify phishing attacks and teaches them what signs to look for to determine if a message is legitimate or not. [Read More]
DHS issues an emergency directive instructing federal agencies to take measures to mitigate DNS hijacking attacks after several government domains were targeted by malicious actors. [Read More]
Barracuda Networks this week announced automated incident response capabilities are now available for customers using its Total Email Protection solution. [Read More]
A newly discovered set of compromised login details contains roughly 773 million email addresses, Australian web security expert Troy Hunt reveals. [Read More]
Email security firm Zix will acquire AppRiver, a provider of cloud-based cybersecurity solutions, for $275 million in cash. [Read More]
In a new form of Business Email Compromise (BEC), an attacker assumes the identity of an employee, and asks for his or her paycheck to be sent to a new account. [Read More]
A recently addressed vulnerability in Office 365 allowed attackers to bypass existing phishing protections and deliver malicious messages to victims’ inboxes. [Read More]
- 1 of 25
- ››
FEATURES, INSIGHTS // Email Security
By learning from the past there are many steps we can take to strength our approach to security as attackers continue to turn to email to help accomplish their mission.
“Evasive phishing" is not a term much heard, but we all will—and need to—start talking a lot more about it than we have in the past.
BEC is becoming increasingly profitable for threat actors as organizations are making it easy for adversaries to gain access to the valuable information that sits within these inboxes.
We should be thinking about how users work, what they do and how it affects the security posture of the business, but does security really start with them?
Ninety percent of breaches may begin with an email, but today most of the action happens well after an inbound email has been scanned and delivered.
Even organizations with the most robust defense solutions and advanced automated technologies cannot effectively combat threats such as BEC without the adequate support and nuanced expertise of humans.
To mitigate the risk of attacks, IT teams should disable unused tools and components, while deploying endpoint protection that doesn’t rely solely on file scanning or whitelisting.
DMARC is an email authentication standard designed to eliminate phishing and other types of attack that use spoofing to misrepresent an email sender identity.
Endpoint protection will never be able to catch up with “known wolves,” but machine learning and artificial perception can change the rules of engagement with models of “known good.”
Conventional email security solutions may defend against spam, viruses, and malware, but they don’t defend against ignorance or egregious stupidity.
- 1 of 4
- ››
SecurityWeek Daily Briefing
- Pwn2Own 2019: Researchers Win Tesla After Hacking Its Browser
- UK Police Federation Hit by Ransomware
- Russian Hackers Target European Governments Ahead of Elections: FireEye
- Industry Reactions to Norsk Hydro Breach: Feedback Friday
- Microsoft Launches Defender ATP Endpoint Security for macOS
- D.C. Attorney General Introduces New Data Security Bill
- Observations From RSA Conference 2019
- Researchers Earn $270,000 for Firefox, Edge Hacks at Pwn2Own 2019
- Threat Hunting Tips to Improve Security Operations
- Global Security Spend Set to Grow to $133.8 Billion by 2022: IDC
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy