#EchoSpoofing

Proofpoint phishing palaver plagues millions with ‘perfectly spoofed’ emails from IBM, Nike, Disney, others

by

July 30, 2024 at 02:35AM A large-scale phishing campaign exploited a security vulnerability in Proofpoint’s email filtering to send three million fake emails daily, appearing to be from major companies. The spammers manipulated Proofpoint’s system to send malicious emails, tricking recipients into revealing sensitive information. Guardio Security notified Proofpoint and assisted in mitigating the attack, … Read more

Phishing Campaign Exploited Proofpoint Email Protections for Spoofing

by

July 29, 2024 at 02:48PM Guardio Labs reported that threat actors exploited a misconfiguration in Proofpoint’s email protection service to conduct a large-scale phishing campaign. The vulnerability, named EchoSpoofing, allowed attackers to send millions of phishing emails per day and bypass security measures, spoofing well-known brands. Proofpoint has been working to address the issue and … Read more

Proofpoint settings exploited to send millions of phishing emails daily

by

July 29, 2024 at 09:57AM The ‘EchoSpoofing’ phishing campaign exploited Proofpoint’s email protection service, sending millions of spoofed emails impersonating major companies. The emails aimed to steal personal info and incurred charges, while passing SPF and DKIM checks. Guardio Labs discovered and helped fix the security gap, leading to Proofpoint tightening security and introducing new … Read more

Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails

by

July 29, 2024 at 09:24AM An unknown threat actor exploited an email routing misconfiguration in Proofpoint’s defenses to send millions of spoofed emails. The campaign, named EchoSpoofing, began in January 2024 and utilized SMTP servers on virtual private servers, bypassing major security protections. The attacker sent messages impersonating legitimate domains, and the technique eluded detection. … Read more