Security News

Tessian, an email security company that focuses on human error, today announced that it raised $65 million in Series C funding. The company has raised $123.7 million in total and its valuation is now $500 million.

Walmart apologizes for a burst of offensive and racist Walmart.com registration emails sent to thousands of people yesterday. Starting at approximately 2 AM EST yesterday, people worldwide began receiving new user registration emails from Walmart.com where the member name was a racist slur.

The UK data regulator has fined American Express £90,000 for sending over 4 million spam emails to customers within one year. "During the investigation the ICO found that Amex had sent over 50 million, of what it classed as, servicing emails to its customers," the UK Information Commissioner's Office said.

An email campaign is delivering a Java-based remote access trojan that can not only steal credentials and take control of systems, but also presents as fake ransomware, Microsoft researchers have discovered. The Microsoft Security Intelligence team has outlined details of a "Massive email campaign" delivering the StrRAT malware that they observed last week and reported in a series of tweets earlier this week.

Fraudsters are sending out fake Amazon order emails and tricking online shoppers into calling a telephone number manned by them to steal the shoppers' credit card details and other sensitive information. Both emails look contain Amazon branding and follow a structure similar to real order confirmation emails from Amazon but, if one knows where to look, there are many indications that the emails are fraudulent.

American Express has been fined 0.009 per cent of its annual profits by the Information Commissioner's Office after spamming people who opted out of its marketing emails with 4.1 million unwanted messages. "Between 1 June 2018 and 21 May 2019, 4,098,841 of those emails were marketing emails, designed to encourage customers to make purchases on their cards which would benefit Amex financially. It was a deliberate action for financial gain by the organisation. Amex also did not review its marketing model following customer complaints," said the ICO in a statement.

Cybercriminals are increasingly using email as an easy and effective way to infect computers with malware and trick potential victims with phishing scams, says Trustwave. In a report released Wednesday, cybersecurity provider Trustwave looks at email scams prevalent in 2020 and provides advice on how to combat them.

On Wednesday, software company Egress released a report titled "Outbound email: Microsoft 365's security blind spot" highlighting email data breaches and IT frustrations during the coronavirus pandemic. "We can't ignore the risk of email data loss from Microsoft 365 and the limitations of static DLP solutions to mitigate the outbound email security risks that organizations face today."

The Alaska court system said Tuesday it had restored email capabilities nearly two weeks after a cybersecurity attack. The court system, in a statement, said it doesn't know who was behind the attack, why the court system was targeted or how long it will be before services are fully back online.

Abnormal Security removed the blog post after receiving legal notice from Zix. Through their PR agency, Zix contacted us to say that the blog post was removed because they believe it contained multiple false and misleading statements, and they asked us to remove our article or issue a retraction.