Email Security News, Articles and Updates

Cryptomix ransomware receives face lift

The malicious actors behind Cryptomix ransomware have pushed out a new variant, with the primary change being the inclusion of a new extension and minor alterations to the contact info and ransom note.

25% of Australian companies hit by phishing attack this week

The phishing attacks against Australian energy customers grew yesterday with Mailguard reporting an enormous number of phishing attempts made centered on fake Origin Energy bills.

ICO fines grocers Morrisons for sending unwanted emails to customers

The Information Commissioner's Office (ICO) has run an investigation and concluded that Morrisons intentionally sent thousands of marketing emails to its card members.

Phishing scams used by cyber-criminals to steal crypto-currencies

With the value of crypto-currencies like bitcoin continuing to climb, cyber-criminals are looking to expand the tricks they use to steal these virtual dollars.

FBI: Whaling now a US$ 5 billion business as execs targeted

Whaling, or Business Email Compromise, has exploded in popularity shown by the massive sums that Whalers are raking in.

Under-the-radar KONNI malware campaign found targeting North Korea

A new malware family has been discovered with belief that it has been in use for more than three years to target officials and organisations with ties to North Korea.

Both human and technical defences against email attachments inadequate

Conventional anti-virus and sandboxing solutions are no longer effective defences against malicious email attachments, but relying upon employees doesn't work for companies either.

Facebook and Google confirm falling victim to £77m phishing scam

Back in March, a Lithuanian man was arrested for duping two unnamed multinational internet companies via an email phishing attack.

Financial services sector most attacked in 2016

IBM's X-Force Research Team has found that cyber-criminals follow Willie Sutton's old-school, analog advice on why to rob banks because "that is where the money is."

[Updated] Nomx 'secure email server' challenged by British researchers

The CEO and CTO of nomx LLC has vigorously defended his product against claims that it is not secure after it was hacked by British security researchers Prof Alan Woodward and Scott Helme.

Bold phishers use Australian myGov to pull PII

Australians need be aware of a phishing campaign utilising that nation's myGov website as the hook to have its targets unknowingly give up an absolute treasure trove of personal information.

'Data security incident' affects 36K Boeing workers

A Boeing employee seeking assistance with an Excel formatting issue emailed a spreadsheet to his spouse containing personal data of 36,000 Boeing employees.

Phishing scam impersonating iTunes attempting to trick Canadian users

A phishing scam impersonating iTunes is attempting to trick Canadian Apple users into giving away their personally identifiable information, in order to get a refund on movies they never actually paid for.

A cyber-success story: HMRC's road to DMARC implementation

HMRC has successfully stopped 300 million phishing emails sent in its name. SC's Roi Perez met with Ed Tucker, head of cyber-security at HMRC to discuss the body's road to DMARC implementation.

Ransomware, IoT combo lead SANS list of dangerous attack techniques

The development of crypto ransomware and IoT devices as a threat platform is among the top infosec problems discussed during the Seven Most Dangerous Attack Techniques panel at RSA 2017.

PayPal scam uses account fraud scare tactics to phish personal data

A phishing email scam that warns PayPal users of possible fraudulent account activity in hopes of scaring personally identifiable information out of them is currently making the rounds.

Encryption "critical" for GDPR but many deterred by complexity

Three quarters of organisations plan to expand their data protection capabilities with encryption as GDPR deadline looms.

You Can't Stop the Risk!

Greg Aligiannis looks at what can be done to mitigate the threat of employees- by taking security out of their hands.

Brother-sister team busted for high-level email hacks

A brother and sister were arrested and charged with accessing email accounts of two former prime ministers, Vatican cardinals and the president of the European Central Bank.

Plot twist: Phony Netflix membership emails turn out to be phishing scam

An email phishing campaign targeting Netflix users was recently found tricking victims into giving away their credit card and personal information after asking them to update their membership details.

Employees put organisations at risk by being too trusting

More than 90 percent of cyber-attacks and resulting breaches in 2016 stemmed from a spear-phishing email.

Security bugs fixed in Mozilla app Thunderbird 45.6

A number of fixes were issued on Wednesday for security vulnerabilities in Thunderbird 45.6.

Scrooge Hackers Phish for Bitcoins, Google AdWords

As cryptocurrency enjoys greater acceptance, it's no wonder there's been a correlative influx of schemes to grab some of the virtual loot during the lucrative holiday shopping season.

Obama to release Russian sanctions shortly

The Obama administration is close to announcing sanctions against Russia for interfering with the 2016 US presidential election, the Washington Post reported.

Alert: phishing scams swimming into UK charity inboxes

The Charity Commission, the independent regulator of charities in England and Wales, is issuing an alert to charities that they're at risk of cyber-attack.

Top 12 tips to stay safe online this Christmas season

As the popularity of shopping online increases, so do the odds of falling victim to cyber-crooks.

Dark tower in lower Manhattan outed as NSA nerve centre

A telecommunications hub built in 1969 to withstand a nuclear attack, now "appears" to serve as a surveillance site for the National Security Agency (NSA).

More than 75% of Europeans click on links or open malicious attachments

More than 54 million Europeans have been victimised by online crime in the past year as hackers take advantage of consumer complacency.

Interest in encrypted email spikes following Trump win

Government-resistant, end-to-end encrypted email services received a spike in interest following Donald Trump's win in the US presidential election

Leaked emails tie Russia to separatists - report

A collection of hacked emails from a high-ranking Kremlin official were published by the BBC, providing details of Russia's involvement with separatist leaders in eastern Ukraine.