Phishing

Deceptive emails impersonating trusted entities to steal credentials fraudulently.

Posts for this tag
All posts
2.3 million emails. One exposed API key. $10K bill.

How DMARC forensics exposed an API key leak, 2.3M unauthorized emails, and a $10K bill.

2.3 million emails. One exposed API key. $10K bill.
Email Security
Backscatter Injection Attacks Exploiting Legitimate Infrastructure

Attackers use backscatter emails to bypass filters, harming servers and delivering phishing content.

Backscatter Injection Attacks Exploiting Legitimate Infrastructure
Email Security
The Risks of Abruptly Enforcing DMARC p=reject in Organizations

Sudden DMARC enforcement can disrupt workflows, block emails, and impact organizational operations significantly.

The Risks of Abruptly Enforcing DMARC p=reject in Organizations
Email Security
Microsoft 365 Groups Bypass DMARC, Exposing Organizations to Spoofing

Microsoft 365 groups can deliver spoofed emails despite failing SPF, DKIM, and enforced DMARC policies.

Microsoft 365 Groups Bypass DMARC, Exposing Organizations to Spoofing
Email Security
Why Regular Password Changes Still Matter in Real Cybersecurity

Even with MFA, forced password resets help contain breaches and limit ongoing attacker access.

Why Regular Password Changes Still Matter in Real Cybersecurity
Email Security
Unexpected DMARC Reports Flood emvdmarc[.]com After Domain Acquisition

New domain emvdmarc[.]com receives DMARC reports from random organizations, creating unexpected security concerns.

Unexpected DMARC Reports Flood emvdmarc[.]com After Domain Acquisition
Email Security
Phishing Alert: Netflix Subscription Cancellation Scams on the Rise

Scammers exploit lookalike domains to send fake Netflix cancellation emails targeting unsuspecting users.

Phishing Alert: Netflix Subscription Cancellation Scams on the Rise
Email Security