Mailchimp may be one of the largest email marketing companies out there, but there are others with better cyber security records. Digital Ocean dumps Mailchimp after security breach • The Register
Where do threat actors get the email addresses for phishing attacks?
They steal them: Email marketing firm hacked to steal crypto-focused mailing lists (bleepingcomputer.com) Email marketing firms are prime targets.
Seasonal article over on CyberAwake
With the holiday season well underway, I thought we would take a look at the cyber security implications of the Out-of-Office notification:
Stealing emails undetected using Chrome extensions
The malicious extension has been called SHARPEXT by researchers at Volexity and impacts the Chromium-based web browsers, Chrome, Edge, and can steal email from Gmail. Cyberspies use Google Chrome extension to steal emails undetected (bleepingcomputer.com)
Halfords can’t keep a secret
Not hacked this time, a researcher have discovered that Halfords is just a little too free when it comes to sharing your data with others! Chris Hatton, a cyber security consultant discovered several exploits in service emails that Halfords had sent him in the course of normal business transactions: Halfords …
