Messaging Security

Microsoft uncovers NOBELIUM ‘sophisticated email-based attack’

The Microsoft Threat Intelligence Center (MSTIC) has uncovered a “sophisticated email-based attack” operated by NOBELIUM, as part of a wide-scale malicious email campaign.

Microsoft uncovers NOBELIUM ‘sophisticated email-based attack’ Read More »

Samba fixes vulnerability (CVE-2021-20254) that could allow an attacker unauthorized access to files

Samba has released a software update to fix a vulnerability (CVE-2021-20254) that could allow an attacker unauthorized access to files. A remote attacker could take advantage of this bug and exploit unpatched systems.

Samba fixes vulnerability (CVE-2021-20254) that could allow an attacker unauthorized access to files Read More »

Samba fixes two High severity bugs (CVE-2020-27840 and CVE-2021-20277)

Samba has released software updates to fix two High severity security vulnerabilities (CVE-2020-27840 and CVE-2021-20277) that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.

Samba fixes two High severity bugs (CVE-2020-27840 and CVE-2021-20277) Read More »

FBI and CISA issue urgent joint cybersecurity advisory on Exchange server hacks

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued an urgent joint cybersecurity advisory on the Microsoft Exchange vulnerability exploits, collectively known as “ProxyLogon.”

FBI and CISA issue urgent joint cybersecurity advisory on Exchange server hacks Read More »

Microsoft releases emergency patches for Exchange Server RCE vulnerabilities exploited in the wild (Updated)

Microsoft has released emergency out-of-band security updates to fix multiple Critical vulnerabilities impacting Microsoft Exchange Server 2013, 2016 and 2019, collectively known as “ProxyLogon.” The tech giant also published interim mitigations if organizations can not patch immediately, as well as an IOC detection tool.

Microsoft releases emergency patches for Exchange Server RCE vulnerabilities exploited in the wild (Updated) Read More »

Cisco patches vulnerabilities in multiple products

Cisco has released security patches for Email Security Appliance, Webex, Prime Network Registrar, Intelligent Proximity and other products. Four of the vulnerabilities are High risk and another eight are rated Medium severity.

Cisco patches vulnerabilities in multiple products Read More »

‘Shark Tank’ star loses (and recovers) almost $400K in BEC scam

“Shark Tank” star Barbara Corcoran lost nearly $400,000 to a phishing scam late last month after scammers tricked people in her office into wiring funds to a bank in Germany. The good news is Corcoran ended up recovering the funds before the money could be transferred to the fraudster’s bank account in China.

‘Shark Tank’ star loses (and recovers) almost $400K in BEC scam Read More »