MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts
Mar15

MFA Bypassed in IMAP-Based Attacks on Office 365 and G Suite Accounts

Multi-factor authentication can prevent accounts from being accessed if passwords are stolen or obtained using brute force tactics; however, Proofpoint has discovered that multi-factor authentication is being bypassed on Office 365 and G Suite accounts using the legacy IMAP protocol. The IMAP authentication protocol bypasses MFA and attackers are able to avoid being locked out of accounts. The methods used made failed login attempts...

Read More
Healthcare Employees Vulnerable to Phishing Attacks
Mar14

Healthcare Employees Vulnerable to Phishing Attacks

The healthcare industry appears to have more than its fair share of phishing attacks. Barely a week goes by without a major phishing attack being reported by a healthcare provider in the United States. Healthcare organizations are targeted by cybercriminals as they hold valuable data. Healthcare records contain information that can be used for multiple types of fraud and the records sell for big bucks on darknet marketplaces....

Read More
Communication Issues and Lack of Emergency Planning are Putting Employees at Risk
Mar14

Communication Issues and Lack of Emergency Planning are Putting Employees at Risk

Companies are taking steps to improve safety in the workplace by planning for emergencies, but communication issues and poor preparedness for modern emergencies is putting employees at risk, according to a recent report from Rave Mobile Security. The company’s 2019 Workplace Safety and Preparedness Survey shows that emergency preparedness is improving in the United States and many businesses and organizations are planning...

Read More
SpamTitan Email Security Solution Now Incorporates Sandboxing and DMARC Authentication
Mar13

SpamTitan Email Security Solution Now Incorporates Sandboxing and DMARC Authentication

SMB and MSP email security solution provider TitanHQ has announced a major update of its SpamTitan email security solution. New features have been added to the solution to provide even greater protection against sophisticated phishing attacks and new malware threats. The new layers of security were applied to the solution this week and are now available to customers at no extra cost. The past few years have seen a major increase in...

Read More
March 2019 Patch Tuesday: 2 Actively Exploited Bugs Patched by Microsoft
Mar13

March 2019 Patch Tuesday: 2 Actively Exploited Bugs Patched by Microsoft

March 2019 Patch Tuesday has seen Microsoft issue fixes for 64 vulnerabilities, two of which are being actively exploited in the wild.   The two actively exploited flaws are being tracked as CVE-2019-0808 and CVE-2019-0797. The first is a zero-day vulnerability in the Win32k component of Windows that could be exploited by an authenticated user to elevate privileges and execute arbitrary code. The flaw was identified by Google’s...

Read More