Email security

The question isn't whether to adopt AI in email security, but how quickly you can do so.

Proofpoint's research highlights how threat actors leverage automated inbox rules, designed for legitimate organization, to hide security alerts, forward sensitive data, and mark messages as read.

Suspected former Black Basta affiliates impersonate help desks to deploy RMM software.

Researchers from Proton identified a substantial number of compromised email accounts belonging to public officials globally.

The scam begins with a phishing email designed to appear as an official communication from the IRS, informing recipients they are eligible for a $5,000 financial grant supposedly from Elon Musk.

Attackers abuse Microsoft 365 mailbox rules to hide activity, steal data, and persist after password resets.

The incident, disclosed in a regulatory filing, involved a business email compromise attack where cybercriminals likely infiltrated email or accounting systems to alter payment details.

The attack chain begins with a user receiving an email containing a URL that downloads an encoded .cmd file.