Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails
July 29, 2024 at 09:24AM An unknown threat actor exploited an email routing misconfiguration in Proofpoint’s defenses to send millions of spoofed emails. The campaign, named EchoSpoofing, began in January 2024 and utilized SMTP servers on virtual private servers, bypassing major security protections. The attacker sent messages impersonating legitimate domains, and the technique eluded detection. … Read more