Email security

These deceptive emails, originating from seemingly legitimate OpenAI accounts, aim to trick recipients into clicking malicious links or calling fraudulent numbers.

The vulnerability resides in SmarterMail's APT unauthenticated ForceResetPassword API endpoint.

The attackers likely initiated access using previously compromised email addresses, sending phishing emails containing a SharePoint URL disguised with subjects like "New Proposal - NDA," according to Microsoft.

Attackers are abusing Zendesk instances that allow unverified users to submit support tickets.

Afghan ministry and administrative office workers have been targeted with malware-spreading phishing emails purporting to be from the office of the country's prime minister as part of the Nomad Leopard campaign, according to The Record, a news site by cybersecurity firm Recorded Future.

CVE-20225-20393 was placed on CISA's Known Exploited Vulnerabilities (KEV) catalog on Dec. 17.

Attackers create fraudulent PayPal business accounts and use the platform's "Money Request" or "Invoice" feature.

Here’s how teams can prevent email whitelist from becoming a large hole in their zero-trust programs.