In this article, we elaborate how we managed to identify hidden internal email servers by relying on various open-source intelligence (OSINT) data sources for our direct email spool attack research.
Author: Gabor
Gabor Szathmari is a cybersecurity expert and digital privacy enthusiast. In his professional life, Gabor helps businesses, including many small and mid-size legal practices, with their cybersecurity challenges at Iron Bastion.
How to Evade Expensive Phishing Filters with One Simple Trick
One in three Australian law firms are susceptible to a cyber threat called “direct email spool attack”, our report can reveal. This attack technique bypasses expensive email security solutions, rendering them completely useless and exposing the affected organisations to cybercrime.
Five Ways to Identify Phishing Emails
As phishing emails come in different shapes and formats, there is no silver bullet to identify a phishing email. However, there is a collection of red flags you should be looking for before clicking on a new message. This is my up-to-date guide helping you recognise the latest email-based scams.
Why MFA on PEXA (Property Exchange Australia) leaves security concerns?
PEXA (Property Exchange Australia) introduces multi-factor authentication to combat payment redirection fraud but leaves security concerns due to SIM swapping attacks.
How Abandoned Domain Names Pose a Major Cyber Risk to Your Business
How abandoned internet domains are a significant cyber risk which threatens businesses and in particular the Australian legal profession.
Why You Need Professional Email Hosting for Your Business
In this article, we explain how basic email hosting providers can put your business at risk of cyber attacks and why you should consider migrating to a professional email service.