Email - Security Intelligence

A woman scans a QR code on her computer: URL analysis

news

Phishing Attacks Incorporate QR Codes to Help Evade URL Analysis

Security researchers noticed fraudsters incorporating QR codes into various phishing attack campaigns as a way to evade URL analysis.

July 2, 2019 | By David Bisson

news

A woman checks her email at work: data breach

news

New York Nonprofit Organization Traces Data Breach to Employee Email Accounts

People Inc., a nonprofit organization based in New York state, has traced a recent data breach to compromised employee email accounts.

June 3, 2019 | By David Bisson

news

Three professionals discuss DNSSEC security controls

article

Bind Certificates to Domain Names for Enhanced Security With DANE and DNSSEC

The biggest hurdle for implementing DANE lies with DNSSEC. Granted, setting up DNSSEC can be daunting, but the reward of a much higher level of DNS security can make it worth the effort.

June 3, 2019 | By Koen Van Impe

article

news

Updated Version of KPOT Stealer Available for Purchase on Underground Hacking Forums

Researchers observed cybercriminals selling an updated version of the KPOT stealer on some underground hacking forums.

May 14, 2019 | By David Bisson

news

article

How a Quirky Gmail Feature Led to a Phishing Scare and a Valuable Lesson in Email Security

What began as a moment of panic in the wake of what I thought was a phishing attempt ended up being a valuable lesson about a quirky Gmail feature and how it impacts the email security landscape.

May 13, 2019 | By Joseph Ries

article

Man speaking on phone while holding a laptop: tech support scams

news

Fraudsters Sending Email, SMS Messages Linked to Tech Support Scams Hosted on the Cloud

Digital fraudsters are sending out emails and SMS messages that link to tech support scams hosted on popular cloud platforms.

May 8, 2019 | By David Bisson

news

Man working on a laptop in the office: TA505

news

New TA505 Phishing Campaign Using LOLBins to Distribute Backdoor Malware

A threat actor known as TA505 recently launched a phishing campaign that uses living-of-the-land binaries (LOLBins) to distribute a new backdoor malware.

April 29, 2019 | By David Bisson

news

IT professionals investigating security threats.

article

What Security Threats of the Past Can Tell Us About the Future of Cybersecurity

If we look close enough, many new security threats are something we've seen in another form or an attack style we've had to previously defend against.

March 21, 2019 | By Sue Poremba

article

Businesswoman checking her email: brute-force attack

news

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

A massive brute-force attack campaign used both legacy protocols and credential dumps to compromise cloud user accounts, according to security researchers.

March 20, 2019 | By David Bisson

news

Professional at work realizing her information was exposed in an email leak

news

More Than 2 Billion Unencrypted Records Exposed in Major Email Leak

A recent security incident that began as an email leak exposed more than 2 billion records containing email addresses and other personal information.

March 11, 2019 | By David Bisson

news

Phishers Use Fake Office 365 Alerts to Compromise Admin Accounts

MegaCortex Ransomware Uses Aggressive Ransom Notes to Coerce Payments

Fake FaceApp Infects Users With MobiDash Malware

Weekly Security News Roundup: Vulnerability Exposed Instagram Attacks to Hijacking

Voices of Security

2019 Cost of a Data Breach Report

X-Force Red in Action

A Secure Start

CISO of Major UK Retailer Weighs in on Enterprise IoT Security

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

What’s New in the 2019 Cost of a Data Breach Report

The Dark Web Market Is Moving Toward IaaS and MaaS — Here’s Why

I Can’t Believe Mirais: Tracking the Infamous IoT Malware

Threat Intelligence Is the SOC’s Road Map to DNS Security

Podcast: What Factors Contribute to the Cost of a Data Breach?

Podcast: IT’s Eyes and Ears — The Evolving Security Operations Center (SOC)

Podcast: Reducing Third-Party Risk

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Webinar: Fortify your clients with the IBM Resilient SOAR Platform

Webinar: Protecting Office365 with IBM Cloud Identity and MaaS360

Webinar: Wandera & IBM Introduce the Next Level of Access Management

Webinar: How to Outmatch Data Security Challenges with Cost-Effective, Practical Strategies

Tag: Email

Phishing Attacks Incorporate QR Codes to Help Evade URL Analysis

New York Nonprofit Organization Traces Data Breach to Employee Email Accounts

Bind Certificates to Domain Names for Enhanced Security With DANE and DNSSEC

Updated Version of KPOT Stealer Available for Purchase on Underground Hacking Forums

How a Quirky Gmail Feature Led to a Phishing Scare and a Valuable Lesson in Email Security

Fraudsters Sending Email, SMS Messages Linked to Tech Support Scams Hosted on the Cloud

New TA505 Phishing Campaign Using LOLBins to Distribute Backdoor Malware

What Security Threats of the Past Can Tell Us About the Future of Cybersecurity

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

More Than 2 Billion Unencrypted Records Exposed in Major Email Leak