logo
welcome
About us
Newsletter
News Widget
Media Inquiries

Summary

Secure Email Gateways Questioned

This is a Proofpoint news story, published by Dark Reading, that relates primarily to Guardio news.

Proofpoint news

For more Proofpoint news, you can click here:

more Proofpoint news

News about Us federal policies

For more Us federal policies news, you can click here:

more Us federal policies news

Dark Reading news

For more news from Dark Reading, you can click here:

more news from Dark Reading

About the Otherweb

Otherweb, Inc is a public benefit corporation, dedicated to improving the quality of news people consume. We are non-partisan, junk-free, and ad-free. We use artificial intelligence (AI) to remove junk from your news feed, and allow you to select the best politics news, business news, entertainment news, and much more. If you like this article about Us federal policies, you might also like this article about

secure email gateways

. We are dedicated to bringing you the highest-quality news, junk-free and ad-free, about your favorite topics. Please come every day to read the latest Fake Emails news, email attacks news, news about Us federal policies, and other high-quality news about any topic that interests you. We are working hard to create the best news aggregator on the web, and to put you in control of your news feed - whether you choose to read the latest news through our website, our news app, or our daily newsletter - all free!

secure email gateway
Dark Reading

Dark Reading

Disney, Nike, IBM Signatures Anchor 3M Fake Emails a Day

Dark Reading
Summary
Nutrition label

71% Informative

Proofpoint 's secure email gateway (SEG) is a kind of firewall for corporate emails, filtering what comes in and applying authentication to what goes out.

Recently, researchers from Guardio uncovered a campaign undermining that outbound part.

They used a "super-permissive misconfiguration flaw" to send credit-card scam emails that were signed and verified as if they came from legitimate, brand name corporate accounts.

EchoSpoofing finally seems to have died down recently, after Proofpoint introduced a vendor-specific header for outgoing emails.

Organizations that don't implement secure email controls like DMARC monitoring risk far greater cyber consequences.

Microsoft says it took immediate action to investigate and disabled accounts deemed fraudulent.

VR Score

66

Informative language

61

Neutral language

43

Article tone

semi-formal

Language

English

Language complexity

53

Offensive language

not offensive

Hate speech

not hateful

Attention-grabbing headline

not detected

Known propaganda techniques

not detected

Time-value

medium-lived

External references

2

https://www.proofpoint.com/us/blog/threat-insight/scammer-abuses-microsoft-365-tenants-relaying-through-proofpoint-servers-deliverhttps://labs.guard.io/echospoofing-a-massive-phishing-campaign-exploiting-proofpoints-email-protection-to-dispatch-3dd6b5417db6

Source diversity

2

www.proofpoint.comlabs.guard.io

Affiliate links

no affiliate links

Read full article