PHOTO:
Adobe
One of the main issues with email marketing is earning the trust of the people on your email list. That s because most people are sick and tired of sifting through cold, spammy emails every day. In fact, with 293.6 billion emails being sent and received each day according to Statista, marketers who genuinely have something to say, have a really though jobs trying get people s attention.
Leveraging BIMI is one of the tools marketers use to improve their emails chances of being perceived as non-spammy and legitimate. It s one way of proving to your recipients that you are a legitimate company and not a spambot from who knows where.
A savvy phishing campaign manages to evade native Microsoft security defenses, looking to steal O365 credentials.
A phishing campaign bent on stealing Microsoft login credentials is using Google Firebase to bypass email security measures in Microsoft Office 365, researchers said.
Researchers at Armorblox uncovered invoice-themed emails sent to at least 20,000 mailboxes that purport to share information about an electronic funds transfer (EFT) payment. The emails carry a fairly vanilla subject line, “TRANSFER OF PAYMENT NOTICE FOR INVOICE,” and contain a link to download an “invoice” from the cloud.
Clicking that link begins a series of redirects that eventually takes targets to a page with Microsoft Office branding that’s hosted on Google Firebase. That page is of course a phishing page, bent on harvesting Microsoft log-in information, secondary email addresses and phone numbers.
Customers of top oil & gas firms ‘open to email fraud’
DUBAI, February 1, 2021 Only 25 of the top 50 oil & gas companies that have operations in the Middle East have a Domain-based Message Authentication, Reporting & Conformance (DMARC) record in place, leaving customers at risk of email fraud, a report said. The lack of a DMARC record makes companies potentially more susceptible to cybercriminals spoofing their identity and increasing the risk of email fraud targeting their customers, said the report from Proofpoint, a leading cyber security and compliance company. Perhaps more worryingly, only 5 out of 50 (10%) oil and gas companies have ‘reject’ in place, which means a whopping 90% are not proactively blocking fraudulent emails from reaching customers. Reject is the strictest and recommended level of DMARC protection, a setting and policy that actually blocks fraudulent emails from reaching their intended target.
Common target : Only 10 per cent of Australian universities automatically blocking fraudulent emails
Weâre sorry, this service is currently unavailable. Please try again later.
Dismiss
Save
Normal text size
Advertisement
Almost half of Australiaâs top 20 universities appear to have no protection in place for hackers impersonating their domain to trick people into giving them sensitive information and taking over their computer systems.
Only two of the universities are proactively blocking fraudulent emails from reaching students, alumni and faculty staff, raising concerns they are leaving themselves open to attack.
Australia last year experienced a wave of cyber attacks from a sophisticated state-based actor.