MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

Mar15

0

MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

Posted by NetSec Editor on Mar 15, 2019

MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

Multi-factor authentication can prevent accounts from being accessed if passwords are stolen or obtained using brute force tactics; however, Proofpoint has discovered that multi-factor authentication is being bypassed on Office 365 and G Suite accounts using the legacy IMAP protocol. The IMAP authentication protocol bypasses MFA and attackers are able to avoid being locked out of accounts. The methods used made failed login attempts appear like isolated fails, so they are not detected. Attacks are conducted using a network of thousands of hijacked devices such as vulnerable routers and servers with...

Read more

March 2019 Patch Tuesday: 2 Actively Exploited Bugs Patched by Microsoft

Mar13

0

March 2019 Patch Tuesday: 2 Actively Exploited Bugs Patched by Microsoft

Posted by NetSec Editor on Mar 13, 2019

March 2019 Patch Tuesday: 2 Actively Exploited Bugs Patched by Microsoft

March 2019 Patch Tuesday has seen Microsoft issue fixes for 64 vulnerabilities, two of which are being actively exploited in the wild. The two actively exploited flaws are being tracked as CVE-2019-0808 and CVE-2019-0797. The first is a...

Read more

Verifications.io MongoDB Misconfiguration Exposed 2 Billion Records

Mar13

0

Verifications.io MongoDB Misconfiguration Exposed 2 Billion Records

Posted by NetSec Editor on Mar 13, 2019

Verifications.io MongoDB Misconfiguration Exposed 2 Billion Records

The enterprise email verification service, Verifications.io, has exposed...

Read more

Jackson County, Georgia Pays $400,000 Ransom to Recover Encrypted Files

Mar11

0

Jackson County, Georgia Pays $400,000 Ransom to Recover Encrypted Files

Posted by NetSec Editor on Mar 11, 2019

Jackson County, Georgia Pays $400,000 Ransom to Recover Encrypted Files

After considering the potential costs and benefits, Jackson County,...

Read more

Recent News

Sharecare Health Data Services Issues Alert 8 Months After Breach Discovery

Sharecare Health Data Services Issues Alert 8 Months After Breach Discovery

Mar 16Posted by Security News in Healthcare Data Breaches

Sharecare Health Data Services (SHDS), a San Diego firm that provides...

MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

Mar 15Posted by NetSec Editor in Cybersecurity Alerts, Phishing News

Multi-factor authentication can prevent accounts from being accessed if...

Healthcare Employees Vulnerable to Phishing Attacks

Healthcare Employees Vulnerable to Phishing Attacks

Mar 14Posted by NetSec Editor in Email Spam News, Phishing News

The healthcare industry appears to have more than its fair share of...

Communication Issues and Lack of Emergency Planning are Putting Employees at Risk

Communication Issues and Lack of Emergency Planning are Putting Employees at Risk

Mar 14Posted by NetSec Editor in Vendor News

Companies are taking steps to improve safety in the workplace by planning...

SpamTitan Email Security Solution Now Incorporates Sandboxing and DMARC Authentication

SpamTitan Email Security Solution Now Incorporates Sandboxing and DMARC Authentication

Mar 13Posted by NetSec Editor in Phishing News, SpamTitan News, Vendor News

SMB and MSP email security solution provider TitanHQ has announced a major...

Display More News

Popular News All Time

Previous Next

Media Announcements on Patient Conditions Halted by Meritus
Sep 29, 2011
Top 5 Healthcare Data Breaches in 2011
Sep 29, 2011
Navigating Privacy Laws for Patient Data Sharing
Sep 30, 2011
Preparation for HIPAA Audits Essential
Dec 6, 2011
Are Pagers HIPAA Compliant?
Oct 16, 2012

Healthcare Data Breaches
HIPAA Compliance
Cybersecurity Alerts
Vendor News

Sharecare Health Data Services Issues Alert 8 Months After Breach Discovery

Sharecare Health Data Services Issues Alert 8 Months After Breach Discovery

Mar 16Posted by Security News in Healthcare Data Breaches

Sharecare Health Data Services (SHDS), a San Diego firm that provides...

16,440 Patients Affect Due to Breach at Kentucky Counseling Center

16,440 Patients Affect Due to Breach at Kentucky Counseling Center

Mar 6Posted by Security News in Healthcare Data Breaches

Kentucky Counseling Center (KCC) has uncovered a list of 16,440 clients has...

Milestone Family Medicine Data Breach Made Known to St. Francis Patients

Milestone Family Medicine Data Breach Made Known to St. Francis Patients

Mar 5Posted by Security News in Healthcare Data Breaches

Bon Secours St. Francis Health System is getting in touch with patients in...

Display More News

Is it HIPAA Compliant to Use Marketo?

Is it HIPAA Compliant to Use Marketo?

Mar 2Posted by Security News in HIPAA Compliance

Marketo is an automated software solution for managing lead management and...

Proposal to Pay Patients to Share Their Healthcare Data Included in Oregon Health Information Property Act

Proposal to Pay Patients to Share Their Healthcare Data Included in Oregon Health Information Property Act

Feb 13Posted by Security News in HIPAA Compliance

The Oregon Health Information Property Act proposes that healthcare...

$3m HIPAA Settlement Agreed between Cottage Health and OCR

Feb 7Posted by Security News in HIPAA Compliance

A HIPAA penalty settlement of $3,000,000 has been agreed between the...

Display More News

MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

Mar 15Posted by NetSec Editor in Cybersecurity Alerts, Phishing News

Multi-factor authentication can prevent accounts from being accessed if...

March 2019 Patch Tuesday: 2 Actively Exploited Bugs Patched by Microsoft

March 2019 Patch Tuesday: 2 Actively Exploited Bugs Patched by Microsoft

Mar 13Posted by NetSec Editor in Cybersecurity Alerts

March 2019 Patch Tuesday has seen Microsoft issue fixes for 64...

Verifications.io MongoDB Misconfiguration Exposed 2 Billion Records

Verifications.io MongoDB Misconfiguration Exposed 2 Billion Records

Mar 13Posted by NetSec Editor in Cybersecurity Alerts

The enterprise email verification service, Verifications.io, has exposed...

Display More News

Communication Issues and Lack of Emergency Planning are Putting Employees at Risk

Communication Issues and Lack of Emergency Planning are Putting Employees at Risk

Mar 14Posted by NetSec Editor in Vendor News

Companies are taking steps to improve safety in the workplace by planning...

SpamTitan Email Security Solution Now Incorporates Sandboxing and DMARC Authentication

SpamTitan Email Security Solution Now Incorporates Sandboxing and DMARC Authentication

Mar 13Posted by NetSec Editor in Phishing News, SpamTitan News, Vendor News

SMB and MSP email security solution provider TitanHQ has announced a major...

Webinar: Cost-Effective DNS-Based Web Filtering

Webinar: Cost-Effective DNS-Based Web Filtering

Dec 4Posted by NetSec Editor in Data Security, Phishing News, Vendor News

In order to protect against web-based threats such as malware, ransomware,...

Display More News