Articles about email

Soldier with a gun

Law forcing Feds to get warrants for email slurping is sneaked into US military budget

The US House of Representatives has once again advanced a law bill that would always require the FBI and cops to obtain a warrant from a judge before forcing email providers to hand over people's messages. The latest incarnation of what was the Email Privacy Act comes in the form of an amendment to the National Defense …
Shaun Nichols, 30 May 2018
A hipster man with shades claps, saying bravo

BCC is hard, OK? Quite a lot of orgs blurted your email addresses in GDPR mailouts

Amid the chaos of new European data protection rules coming into force at the end of last week, organisations are apparently struggling to grasp even the most basic of technical challenges, sending out non-blinded emails to their users. Topping the irony charts is ad-blocker Ghostery, which sent users an email with more than …
Rebecca Hill, 29 May 2018

Zimmerman and friends: 'Are you listening? PGP is not broken'

ProtonMail has weighed into 2018's worst branded-bug PR disaster, EFAIL, with a simple statement: “PGP is not broken”. The discoverers of the bug in e-mail client encryption implementations started the ball rolling ahead of their disclosure in the middle of this month. Münster University professor Sebastian Schinzel started …
Spy

S/MIME artists: EFAIL email app flaws menace PGP-encrypted chats

Security researchers have gone public with vulnerabilities in some secure mail apps that can be exploited by miscreants to decrypt intercepted PGP-encrypted messages. The flaws, collectively dubbed EFAIL, are present in the way some email clients handle PGP and S/MIME encrypted messages. By taking advantage of the way the …
Shaun Nichols, 14 May 2018

PGP and S/MIME decryptors can leak plaintext from emails, says infosec professor

Updated A professor of Computer Security at the Münster University of Applied Sciences‏ has warned that popular email encryption tool Pretty Good Privacy (PGP) might actually allow Pretty Grievous P0wnage thanks to bugs that can allow supposedly encrypted emails to be read as plaintext. Professor Sebastian Schinzel took to Twitter …
Simon Sharwood, 14 May 2018
A bouncer. Pic: Shutterstock

Government demands for people's personal info from Microsoft reach all-time low

Government requests for people's data from Microsoft fell to the all-time low of 23,000 in the last half of 2017, as Redmond's rate of rejecting the requests rose to a high of 17 per cent. The software behemoth has published transparency data on requests from global law enforcement agencies, US national security orders and …
Rebecca Hill, 20 Apr 2018
baratov

Yahoo! webmail! hacker! faces! nearly! eight! years! in! the! cooler!

The Canadian hacker who helped Russian agents by breaking into more than 11,000 Yahoo email accounts could spend the next eight years behind bars, if American prosecutors get their way. The case against Karim Baratov entered its sentencing phase this week as both sides submitted to a California federal district judge their …
Shaun Nichols, 19 Apr 2018
hacker

Using Outlook? You should probably do some patching

Microsoft emitted a patch for all supported versions of Outlook on Patch Tuesday this month to prevent attackers harvesting credentials from users who simply preview a carefully crafted Rich Text (RTF) email. The vulnerability (CVE-2018-0950) exploited Outlook’s unfortunate habit of retrieving remotely hosted Object Linking …
Richard Speed, 12 Apr 2018
Tape over mouth, image via Shutterstock

'Dear Mr F*ckingjoking': UK PM Theresa May's mass marketing missive misses mark

Britain's ruling Conservative Party was today forced to apologise to an elderly couple that received a letter, signed from the PM, addressed to a Mr Youmustbe F*ckingjoking. The letter was posted on Twitter this week by Laura McCormack, who said it had been passed to her by her neighbours. Trying to argue they can run the …
Rebecca Hill, 12 Apr 2018
Shopping cart photo, via Shutterstock

'Every little helps'... unless you want email: Tesco to kill free service

Brit supermarket giant Tesco is killing off the free email services offered to customers who bought its broadband package. "Your tesco.net email address is the one you got with your very first Tesco Broadband and Homephone package. After 27th June, it will no longer be in service," the company told users. The broadband …
Paul Kunert, 4 Apr 2018

Microsoft: Yes, we agree that Irish email dispute is moot... now what's this new warrant about?

The four-year court battle between the US government and Microsoft over the release of emails held in the software giant's data centre in Ireland has come to an end – of sorts. Microsoft HQ in Redmond issued a motion with the Supreme Court late yesterday backing the government's request that the case be dismissed as moot, …
Rebecca Hill, 4 Apr 2018
America

Law's changed, now cough up: Uncle Sam serves Microsoft fresh warrant for Irish emails

The US government has issued Microsoft with a new warrant to get access to emails held on the firm's Irish servers, while asking the Supreme Court to dismiss the existing legal battle. The long-running wrangle began back in 2014, when Microsoft was taken to court by American prosecutors who wanted access to suspects' emails …
Rebecca Hill, 3 Apr 2018

Which? leads decrepit email service behind barn, single shot rings out over valley

Consumer group Which? is to terminate its 20-plus-year-old email service, giving long-standing users two months to switch accounts. Which.net was set up in the mid-90s as a benefit to members between 1997 and 2004, after which it was closed to new signups but remained active. The group has now decided to set a cut-off date as …
Rebecca Hill, 3 Apr 2018
NYC

Get the message, PHBs: New York City mulls ban on after-hours biz email

New York's City Council is mulling a law that would make it illegal for employers to require workers be on-call to answer emails after clocking out for the day. Introduction 726, put forward this month by Council Member Rafael Espinal (D-Brooklyn), would require organizations to allow their employees to disconnect during non- …
Shaun Nichols, 28 Mar 2018

SecurEnvoy SecurMail, you say? Only after this patch is applied, though

Recently resolved vulnerabilities in SecurEnvoy's encrypted email transfer SecurMail created a way for encrypted emails in users' inboxes to be read, overwritten and deleted by others. The flaws – uncovered by Austrian security firm SEC Consult during a crash test – included cross-site scripting, cross-site request forgery, …
John Leyden, 13 Mar 2018
Utah bar topless

Will the defendant please rise? Utah State Bar hunts for sender of topless email

The Utah State Bar in America is investigating how a picture of a topless woman appeared in an email sent to all its members earlier this week. There was little to alert lawyers about what they were about to see when the email, titled "2018 Spring Convention Walk-Ins Welcome! Learn How!", popped up in inboxes. Those who did …

Who wants dynamic dancing animations and code in their emails? Everyone! says Google

Having last year axed its scanning of Gmail messages after years of withering privacy criticism, Google has decided to court controversy again in this area. Now it is extending its much-loved Accelerated Mobile Pages (AMP) technology to email inboxes. In a blog post on Tuesday, Gmail product manager Aakash Sahney announced …
Thomas Claburn, 13 Feb 2018
Riven Media http://www.shutterstock.com/gallery-1141187p1.html

Who can save us? It's 2018 and some email is still sent as cleartext

The Internet Engineering Task Force (IETF) has emitted another small advance in its program to protect as much of the Internet as it can, with a request that email systems finish encrypting all their connections. In RFC 8314, Windrock's Keith Moore and Oracle's Chris Newman explain that there some interactions between email …

Create a news alert about email, or find more stories about email.

Biting the hand that feeds IT © 1998–2018