Fake Copyright Infringement Emails Spread Rhadamanthys

November 6, 2024 at 05:56PM Check Point Research has tracked a spear-phishing campaign, “CopyR(ight)hadamantys,” targeting hundreds of companies globally with emails claiming copyright infringement. The emails deliver the sophisticated infostealer Rhadamanthys, capable of stealing sensitive data. Attackers use automation to send these messages, often impersonating known brands in technology and entertainment industries. ### Key Takeaways … Read more

DocuSign Abused to Deliver Fake Invoices

November 5, 2024 at 08:49AM Cybercriminals are exploiting DocuSign APIs to send fraudulent emails, including fake invoices, that evade spam and phishing filters. This highlights vulnerabilities in the platform, posing significant risks for users. The information was reported by SecurityWeek. **Meeting Takeaways:** 1. **Issue Identified**: Cybercriminals are exploiting DocuSign APIs. 2. **Method of Attack**: They … Read more

OWASP Beefs Up GenAI Security Guidance Amid Growing Deepfakes

November 4, 2024 at 02:40PM Generative AI attacks, including deepfakes, are increasing, with AI-generated text in emails growing to 12%. OWASP published guidance for organizations to strengthen defenses. A deepfake incident during a job interview at Exabeam highlighted vulnerabilities. Experts suggest focusing on tech solutions and robust processes rather than solely training individuals to detect … Read more

Exchange Online adds Inbound DANE with DNSSEC for everyone

October 28, 2024 at 03:26PM Microsoft has launched inbound SMTP DANE with DNSSEC for Exchange Online, enhancing email security. Following delays due to security concerns, this feature is now available to all customers, with complete rollouts expected by early 2025. It protects against man-in-the-middle attacks by verifying email communication authenticity. ### Meeting Takeaways: Microsoft Inbound … Read more

Hackers exploit Roundcube webmail flaw to steal email, credentials

October 21, 2024 at 05:20PM Threat actors exploited CVE-2024-37383, a stored XSS vulnerability in Roundcube Webmail, targeting CIS government organizations. This medium-severity flaw allows malicious JavaScript execution via crafted emails to steal credentials. System administrators are urged to update to version 1.6.9, as earlier versions remain vulnerable to attacks. ### Meeting Takeaways 1. **Threat Overview**: … Read more

Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials

October 20, 2024 at 04:48AM Unknown threat actors exploited a patched vulnerability in Roundcube webmail to execute phishing attacks aimed at stealing user credentials. Discovered by Positive Technologies, the attack involved sending a deceptive email containing JavaScript code, targeting specific government organizations. Roundcube has since resolved the issue, but the potential for significant damage remains. … Read more

Time to Get Strict With DMARC

October 18, 2024 at 03:41PM As of early 2024, DMARC adoption surged, with a 60% increase in domains implementing it due to Google and Yahoo’s requirements. However, many businesses remain hesitant to adopt stricter enforcement policies, fearing that legitimate emails may be lost. Improved compliance and awareness of DMARC’s importance are crucial for email security. … Read more

ESET-Branded Wiper Attack Targets Israel; Firm Denies Compromise

October 18, 2024 at 01:30PM ESET denies reports of a cyberattack that compromised its platforms to target Israeli customers with wiper malware. The company addressed a recent security incident involving a malicious email campaign, which was blocked quickly. ESET asserts its technology is secure, while continuing to investigate the situation with its partner. ### Meeting … Read more

AI-Augmented Email Analysis Spots Latest Scams, Bad Content

October 9, 2024 at 12:13PM Multimodal AI is enhancing cybersecurity by aiding in email fraud detection and enabling attackers to craft more convincing scams. Sophos demonstrates 97% accuracy in identifying phishing emails using large language models. This technology could improve security analysts’ efficiency, though operational costs limit widespread use in email security tools. ### Meeting … Read more

Researchers Sound Alarm on Active Attacks Exploiting Critical Zimbra Postjournal Flaw

October 2, 2024 at 02:31AM A critical security flaw, CVE-2024-45519, has been actively exploited in Synacor’s Zimbra Collaboration. The flaw allows unauthenticated attackers to execute arbitrary commands. The issue was addressed in Zimbra versions 8.8.15 Patch 46, 9.0.0 Patch 41, 10.0.9, and 10.1.1. Users are strongly advised to apply the latest patches for protection. Key … Read more