Email security

Emotet malware operators have restarted their newly-launched phishing campaign after fixing a vulnerability that prevented infections when malicious email attachments were opened, BleepingComputer reports.

Proofpoint researchers say the Emotet botnet's use of low volume attacks via Microsoft OneDrive URLs may be the first round of larger campaigns to come.

Tresorit, an end-to-end encrypted cloud services provider, has announced the latest improvement to its offering: end-to-end encrypted email.

The Hacker News reports that SonarSource has identified a high-severity vulnerability in the open-source RainLoop web-based email client which could be leveraged for email exfiltration.

Threat actors have been deploying phishing attacks with the more_eggs malware aimed at corporate hiring managers, according to The Hacker News.

More cybercriminals have been launching phishing campaigns spoofing credit unions for data and money theft.

Eighty-nine percent of businesses reported at least one successful email breach during the past year, while email breach prevalence has increased by nearly twofold since 2019, most of which stemmed from Microsoft 365 phishing attacks, according to Threatpost.

Emotet botnet malware activity has been rising even further in recent months, according to BleepingComputer.