Articles about email

Man holding laptop computer and pointing finger up

Baddies just need one email account with clout to unleash phishing hell

A single account compromise at an unnamed "major university" in the UK led to a large-scale phishing attack against third parties, according to data protection outfit Barracuda Networks. With one account in their pocket, the attackers used it to compromise modest numbers at the same institution, after which they were turned …
John E Dunn, 24 Sep 2018

Feel the shame: Email-scammed staffers aren't telling bosses about it

The number of UK companies on the receiving end of business scams involving email has risen by nearly two-thirds – 58 per cent – in the last year, new data from Lloyds Bank has revealed. Stats from the bank showed the average loss from so-called "business email compromise" (BEC) frauds has reached £27,000. IT workers are …
John E Dunn, 7 Sep 2018
Dog waits on a Welcome mat. photo by sHutterstock

Welcome! Mimecast finds interesting door policies on email filters

Inhouse email filters still miss millions of attacks – including malware attachments, impersonation and malicious links – the latest quarterly stats from cloud provider Mimecast have found. The company used its Email Security Risk Assessment (ESRA) tool to assess the efficiency of email security in use by 37 organisations …
John E Dunn, 30 Aug 2018

I feel a plead... a plead for speed: FastMail naps amid network blunder

Email slinger FastMail took some time out to smell the roses this morning, much to the dismay of its paying users. Problems for the Melbourne-based mail provider began at 07:39 UTC this morning, with FastMail admitting that it was experiencing network issues. These "issues" took down pretty much the entire service, as users …
Richard Speed, 1 Aug 2018
A man hiding from a lot of emails coming from a laptop

Boffin botheration as IET lifts axe on 20-year-old email alias service

A decision by the Institution of Engineering and Technology (IET) to axe an ageing email alias service has left some of its members a-quiver with indignation. Members of the Institution of Electrical Engineers (IEE), which merged with the Institution of Incorporated Engineers (IIE) to form the IET back in March 2006, had …
Richard Speed, 10 Jul 2018

They grow up so fast: Spam magnet Hotmail turned 22 today

Hotmail turned 22 today having ushered in an era of web-based email, great swathes of spam and one of the greatest ever security cock-ups. Launched on 4 July 1996, Hotmail offered "independence" (geddit?) from traditional ISP-based email, which required users download messages into a local reader. Hotmail allowed users to …
Richard Speed, 4 Jul 2018
Enigma machine Shutterstock

In non-startling news, EFF says STARTTLS email crypto is mostly done wrong

Having successfully pushed for universal HTTPS Web encryption, the Electronic Frontier Foundation's next protocol push is for “STARTTLS Everywhere”. It's testament to system administrator inertia that a protocol first published in 2002 and available in all major e-mail clients and servers is still not everybody's default. By …
Soldier with a gun

Law forcing Feds to get warrants for email slurping is sneaked into US military budget

The US House of Representatives has once again advanced a law bill that would always require the FBI and cops to obtain a warrant from a judge before forcing email providers to hand over people's messages. The latest incarnation of what was the Email Privacy Act comes in the form of an amendment to the National Defense …
Shaun Nichols, 30 May 2018
A hipster man with shades claps, saying bravo

BCC is hard, OK? Quite a lot of orgs blurted your email addresses in GDPR mailouts

Amid the chaos of new European data protection rules coming into force at the end of last week, organisations are apparently struggling to grasp even the most basic of technical challenges, sending out non-blinded emails to their users. Topping the irony charts is ad-blocker Ghostery, which sent users an email with more than …
Rebecca Hill, 29 May 2018

Zimmerman and friends: 'Are you listening? PGP is not broken'

ProtonMail has weighed into 2018's worst branded-bug PR disaster, EFAIL, with a simple statement: “PGP is not broken”. The discoverers of the bug in e-mail client encryption implementations started the ball rolling ahead of their disclosure in the middle of this month. Münster University professor Sebastian Schinzel started …
Spy

S/MIME artists: EFAIL email app flaws menace PGP-encrypted chats

Security researchers have gone public with vulnerabilities in some secure mail apps that can be exploited by miscreants to decrypt intercepted PGP-encrypted messages. The flaws, collectively dubbed EFAIL, are present in the way some email clients handle PGP and S/MIME encrypted messages. By taking advantage of the way the …
Shaun Nichols, 14 May 2018

PGP and S/MIME decryptors can leak plaintext from emails, says infosec professor

Updated A professor of Computer Security at the Münster University of Applied Sciences‏ has warned that popular email encryption tool Pretty Good Privacy (PGP) might actually allow Pretty Grievous P0wnage thanks to bugs that can allow supposedly encrypted emails to be read as plaintext. Professor Sebastian Schinzel took to Twitter …
Simon Sharwood, 14 May 2018
A bouncer. Pic: Shutterstock

Government demands for people's personal info from Microsoft reach all-time low

Government requests for people's data from Microsoft fell to the all-time low of 23,000 in the last half of 2017, as Redmond's rate of rejecting the requests rose to a high of 17 per cent. The software behemoth has published transparency data on requests from global law enforcement agencies, US national security orders and …
Rebecca Hill, 20 Apr 2018
baratov

Yahoo! webmail! hacker! faces! nearly! eight! years! in! the! cooler!

The Canadian hacker who helped Russian agents by breaking into more than 11,000 Yahoo email accounts could spend the next eight years behind bars, if American prosecutors get their way. The case against Karim Baratov entered its sentencing phase this week as both sides submitted to a California federal district judge their …
Shaun Nichols, 19 Apr 2018
hacker

Using Outlook? You should probably do some patching

Microsoft emitted a patch for all supported versions of Outlook on Patch Tuesday this month to prevent attackers harvesting credentials from users who simply preview a carefully crafted Rich Text (RTF) email. The vulnerability (CVE-2018-0950) exploited Outlook’s unfortunate habit of retrieving remotely hosted Object Linking …
Richard Speed, 12 Apr 2018
Tape over mouth, image via Shutterstock

'Dear Mr F*ckingjoking': UK PM Theresa May's mass marketing missive misses mark

Britain's ruling Conservative Party was today forced to apologise to an elderly couple that received a letter, signed from the PM, addressed to a Mr Youmustbe F*ckingjoking. The letter was posted on Twitter this week by Laura McCormack, who said it had been passed to her by her neighbours. Trying to argue they can run the …
Rebecca Hill, 12 Apr 2018
Shopping cart photo, via Shutterstock

'Every little helps'... unless you want email: Tesco to kill free service

Brit supermarket giant Tesco is killing off the free email services offered to customers who bought its broadband package. "Your tesco.net email address is the one you got with your very first Tesco Broadband and Homephone package. After 27th June, it will no longer be in service," the company told users. The broadband …
Paul Kunert, 4 Apr 2018

Microsoft: Yes, we agree that Irish email dispute is moot... now what's this new warrant about?

The four-year court battle between the US government and Microsoft over the release of emails held in the software giant's data centre in Ireland has come to an end – of sorts. Microsoft HQ in Redmond issued a motion with the Supreme Court late yesterday backing the government's request that the case be dismissed as moot, …
Rebecca Hill, 4 Apr 2018

Create a news alert about email, or find more stories about email.

Biting the hand that feeds IT © 1998–2018