Detecting Phishing Emails

Research paper: Rick Wash, "How Experts Detect Phishing Scam Emails": Abstract: Phishing scam emails are emails that pretend to be something they are not in order to get the recipient of the email to undertake some action they normally would not. While technical protections against phishing reduc...

MGASA-2020-0300 Updated thunderbird packages fix security vulnerability

If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection CVE-2020-12398. When browsing a malicious page, a race condition in our...

BofA Phish Gets Around DMARC, Other Email Protections

A credential-phishing attempt that relies on impersonating Bank of America has emerged in the U.S. this month, with emails that get around secure gateway protections and heavy-hitting protections like DMARC. The campaign involves emails that ask recipients to update their email addresses, warning...

Proofpoint Email Protection Input Validation Error Vulnerability

Proofpoint Email Protection is a suite of email protection solutions from US-based Proofpoint. The product supports features such as malware and email fraud detection. A security vulnerability exists in Proofpoint Email Protection 2019-09-08 and prior versions. Detailed vulnerability details are...

CVE-2019-20634

An issue was discovered in Proofpoint Email Protection through 2019-09-08. By collecting scores from Proofpoint email headers, it is possible to build a copy-cat Machine Learning Classification model and extract insights from this model. The insights gathered allow an attacker to craft emails tha...

CVE-2019-20634

An issue was discovered in Proofpoint Email Protection through 2019-09-08. By collecting scores from Proofpoint email headers, it is possible to build a copy-cat Machine Learning Classification model and extract insights from this model. The insights gathered allow an attacker to craft emails tha...

Code injection

An issue was discovered in Proofpoint Email Protection through 2019-09-08. By collecting scores from Proofpoint email headers, it is possible to build a copy-cat Machine Learning Classification model and extract insights from this model. The insights gathered allow an attacker to craft emails tha...

CVE-2019-20634

CVE-2019-20634 concerns Proofpoint Email Protection (through 2019-09-08). The issue enables an attacker to collect scores from Proofpoint email headers to build a copy-cat machine learning classification model and extract insights. Using those insights, the attacker can craft emails that receive ...

CVE-2019-20634

An issue was discovered in Proofpoint Email Protection through 2019-09-08. By collecting scores from Proofpoint email headers, it is possible to build a copy-cat Machine Learning Classification model and extract insights from this model. The insights gathered allow an attacker to craft emails tha...

PT-2020-10610 · Proofpoint · Proofpoint Email Protection

Name of the Vulnerable Software and Affected Versions: Proofpoint Email Protection versions prior to 2019-09-08 Description: An issue was discovered in Proofpoint Email Protection. By collecting scores from Proofpoint email headers, it is possible to build a copy-cat Machine Learning Classificati...

3 Ways for MSPs to Increase Their Managed Security Footprint

Managed service providers looking to increase their business often face the choice of whether to focus on finding new customers or expanding their existing base. But there’s a growing opportunity making the latter option especially appealing. The small and midsize businesses that comprise the bul...

Threat Outbreak Alert RuleID33337: Email Messages Distributing Malicious Software on August 13, 2018

Medium Alert ID: 58733 First Published: 2018 August 15 12:27 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33337 may contain the following files: Name |...

Threat Outbreak Alert RuleID33295: Email Messages Distributing Malicious Software on August 13, 2018

Medium Alert ID: 58673 First Published: 2018 August 13 14:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33295 may contain the following files: Name |...

SUSE-SU-2018:2243-1 Security update for enigmail

This update for enigmail to 2.0.7 fixes the following issues: These security issues were fixed: - CVE-2018-12020: Mitigation against GnuPG signature spoofing: Email signatures could be spoofed via an embedded '--filename' parameter in OpenPGP literal data packets. This update prevents this issue...

Threat Outbreak Alert RuleID33103: Email Messages Distributing Malicious Software on July 4, 2018

Medium Alert ID: 58356 First Published: 2018 July 5 15:43 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33103 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID33078: Email Messages Distributing Malicious Software on July 5, 2018

Medium Alert ID: 58365 First Published: 2018 July 5 15:43 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33078 may contain the following files: Name | Size...

Threat Outbreak Alert RuleID33074: Email Messages Distributing Malicious Software on June 29, 2018

Medium Alert ID: 58323 First Published: 2018 June 29 19:20 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33074 may contain the following files: Name | Siz...

Threat Outbreak Alert RuleID32905: Email Messages Distributing Malicious Software on June 21, 2018

Medium Alert ID: 58251 First Published: 2018 June 21 19:56 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID32905 may contain the following files: Name | Siz...

Threat Outbreak Alert RuleID33004: Email Messages Distributing Malicious Software on June 20, 2018

Medium Alert ID: 58233 First Published: 2018 June 20 14:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33004 may contain the following files: Name | Siz...

Threat Outbreak Alert RuleID32942: Email Messages Distributing Malicious Software on June 12, 2018

Medium Alert ID: 58154 First Published: 2018 June 12 15:55 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID32942 may contain the following files: Name | Siz...