e-mail – SSL and internet security news

Email Security Flaw Found in the Wild

November 21, 2023 infossl

cross-site scripting, e-mail, Security technology, Uncategorized, vulnerabilities, zero-day

Google’s Threat Analysis Group announced a zero-day against the Zimbra Collaboration email server that has been used against governments around the world. TAG has observed four different groups exploiting the same bug to steal email data, user credentials, and authentication tokens. Most of this activity occurred after the initial fix became public on Github. To … Read More “Email Security Flaw Found in the Wild” »

Apple Mail Now Blocks Email Trackers

May 9, 2022 infossl

apple, e-mail, privacy, Security technology, tracking, Uncategorized

Apple Mail now blocks email trackers by default. Most email newsletters you get include an invisible “image,” typically a single white pixel, with a unique file name. The server keeps track of every time this “image” is opened and by which IP address. This quirk of internet history means that marketers can track exactly when … Read More “Apple Mail Now Blocks Email Trackers” »

Using Fake Student Accounts to Shill Brands

November 3, 2021 infossl

e-mail, fraud, reputation, scams, Security technology, Uncategorized

It turns out that it’s surprisingly easy to create a fake Harvard student and get a harvard.edu email account. Scammers are using that prestigious domain name to shill brands: Basically, it appears that anyone with $300 to spare can – or could, depending on whether Harvard successfully shuts down the practice — advertise nearly anything … Read More “Using Fake Student Accounts to Shill Brands” »

ProtonMail Now Keeps IP Logs

September 10, 2021 infossl

anonymity, courts, data collection, data protection, e-mail, privacy, Security technology, Uncategorized

After being compelled by a Swiss court to monitor IP logs for a particular user, ProtonMail no longer claims that “we do not keep any IP logs.” Powered by WPeMatico