You probably know by now that cybersecurity isn’t just about protecting your computers and data from threat actors, but it has broader implications that go as far as national security. Yes, it’s true! Case in point: the recent ban on Kaspersky antivirus software by the US government.
![LockBit Bank Data Deception, Snowblind Evades Detection, FBI Warns Crypto Scams – Cybersecurity News [June 24, 2024]](https://www.duocircle.com/wp-content/uploads/2024/07/phishing-protection.jpg)
This week’s cybersecurity bulletin is packed with news that’s making headlines around the world! We’ve got reports on a failed scare tactic by the LockBit ransomware gang, a new and sneaky Android malware called Snowblind, the FBI warning about fake law firms targeting crypto scam victims, a supply chain attack that backdoored WordPress plugins, and Chinese cyberspies using ransomware as a diversion. Read more below!
Email authentication protocols are the foundation of your email security strategy, and even the most seemingly insignificant error can mess up your deliverability and security. One such issue is an invalid DKIM signature, which means there are inaccuracies in your domain’s DomainKeys Identified Mail (DKIM) configuration.
The main purpose of DKIM is to verify whether a malicious entity tampered with email content in transit. To ensure this, a pair of public and private keys are produced for your domain and used by the source email systems to digitally sign the headers of outgoing messages. This digital signature remains valid until intermediate email systems modify the signed part. The d= value represents the signing domain in the header field.
Back in October 2023, Google released its revamped version of email-sending policies, which mandated bulk email senders to comply with the new authentication standards by February 2024. Cut to today: Google has now officially started rolling out these updated policies, and some organizations are receiving the following error message while sending emails:
DMARC, or Domain-based Message Authentication, Reporting, and Conformance is one of the most important email authentication protocols that helps protect your email domains from phishing, spoofing, and other email-based cyber threats. Perhaps this is why it has now become a norm for organizations that send bulk emails to comply with.
![Kraken Flaw Heist, CDK Cyberattack Hits, AMD Investigates Breach – Cybersecurity News [June 17, 2024]](https://www.duocircle.com/wp-content/uploads/2024/06/Office-365-to-Office-365-migration.jpg)
Don’t miss out on the latest cybersecurity scoop of the week! We’ll be covering the $3 million stolen from Kraken, the cyberattack that has affected thousands of US car dealerships, the AMD data leakage, fake Chrome errors installing malware on devices, and the cyberattack on the Toronto District School Board.
Mailchimp is a popular email marketing service that businesses use to create, send, and analyze email campaigns. If you also use Mailchimp, configuring SPF, DKIM, and DMARC will enhance your email deliverability and email security.
Flexible and dynamic SPF records are easier to manage and need less frequent updates. Such records are even more significant for organizations with an extensive email ecosystem as they allow scalable SPF configurations.
![Phishing Exploits Windows, CISA Scam Alert, Cleveland Cyber Response – Cybersecurity News [June 10, 2024]](https://www.duocircle.com/wp-content/uploads/2024/06/DMARC-report-check.jpg)
We’re back with cybersecurity’s latest in our latest news piece. This week, there were several cybersecurity threats, including phishing emails that exploit a weakness in Windows Search to deliver malware, impersonation scams by people pretending to be from CISA, a cyberattack that shut down many government services in Cleveland, a new kind of Windows malware called Warmcookie that spreads through fake job postings, and a blood shortage in London hospitals caused by a ransomware attack. Here’s everything about these!
No matter what your organization’s size is and how many emails you send in a day, you can be a target of impersonation and phishing attacks. So, ensure all your domains, including the parked ones, are secured with SPF, DKIM, and DMARC. In this guide, we are taking you through the 4 steps to enable DKIM using the Google Admin console.
Before you follow these steps, check if your domain’s DNS already has the SPF, DKIM, and DMARC records. Redundancies make all your records invalid, neglecting the responsibility of these email authenticating agents. You can use online SPF, DKIM, and DMARC record lookup tools designed for email security assessment to ascertain this; all you have to do is enter your domain name and the type of record you want it to evaluate for you.
DMARC, or Domain-based Message Authentication, Reporting, and Conformance, is an email authentication protocol that protects your domains from being misused by cyber attackers and improves email deliverability to ensure that your emails reach their intended recipients instead of landing in their spam folders.
Computers and the internet have been around for years now, and when something good happens, ill-intended people soon find ways to exploit it to their advantage. This is exactly what happened with computers and the internet, too.
![FBI Recovers Decryption Keys, Chrome Reduces Cookies, Penguin Fans Breach – Cybersecurity News [June 03, 2024]](https://www.duocircle.com/wp-content/uploads/2024/06/anti-phishing-software.jpg)
Here’s the latest scoop on cybersecurity news around the world with the FBI’s new LockBit decryptor, the new cookie storage update by Google for Chrome users, how Club Penguin users breached a Disney server, the New v3B phishing kit, and the hijacking of Microsoft India’s X account. Let’s dive in!
False positives happen when email filters misjudge genuine emails and mark them as spam or malicious. On the other hand, false negatives are illegitimate and spam emails that pass through these filters without getting detected. Both are problematic for legitimate senders and recipients. Because of false positives, important emails don’t land in the recipients’ inboxes and impact communications. Whereas, due to false negatives, recipients end up getting tricked into downloading malware-infected files, sharing sensitive details, transferring money, etc.
Businesses are now being mindful of protecting their domains with SPF, DKIM, and DMARC, but what about the times when you send emails from your subdomains? As a domain owner or administrator, you create a DMARC record that instructs how email-receiving servers should evaluate incoming emails from your domain to check their legitimacy. This process flows smoothly when domains are included, but it gets a bit complicated with the involvement of subdomains.
![Microsoft Office Malware, Cooler Master Breach, 911 Botnet Dismantled – Cybersecurity News [May 27, 2024]](https://www.duocircle.com/wp-content/uploads/2024/06/email-migration-service-2.jpg)
Here we are back again with the latest cybersecurity news around the world covering the malware posing as Microsoft Office on torrent websites, the Cooler Master data breach, the takedown of 911 S5 botnet, YouTube causing trouble for ad blockers, and the arrest of an Indian man for creating a fake Coinbase website and stealing crypto. Stay tuned!
If you are an email marketer or brand that sends out regular email campaigns, you would agree with us when we say that building trust with your audience is the key to converting them into your customers. But how do you build that trust, especially through email campaigns?
Ray Tomlinson, a visionary, first introduced the concept of email in 1971. Since then, this online communication medium has undergone several changes and developments. Let’s delve into some of the intriguing backstories that narrate how email evolved into what it is today, all thanks to Tomlinson and his fellow techies’ pioneering work.