all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Salesforce and Meta suffer phishing campaign that evades typical detection methods

Add to bookmarks
Aug. 2, 2023, 2:15 p.m. | Help Net Security

Help Net Security www.helpnetsecurity.com

The Guardio research team discovered an email phishing campaign exploiting a zero-day vulnerability in Salesforce’s legitimate email services and SMTP servers. Phishing email sample as was sent from the “@salesforce.com” email address The vulnerability allowed threat actors to craft targeted phishing emails, evading conventional detection methods by leveraging Salesforce’s domain and reputation and exploiting legacy quirks in Facebook’s web games platform. 83% of organizations face phishing attacks every year, and mass-market emails are the most … More


The post …

0 day address campaign cybercrime cybersecurity detection email email phishing emails email security exploiting facebook guardio meta phishing phishing campaign phishing emails research salesforce sample servers services smtp team threat threat actors vulnerability zero-day zero-day vulnerability

Visit resource

More from www.helpnetsecurity.com / Help Net Security

Adaptive Shield unveils SaaS security for AI an hour ago | www.helpnetsecurity.com
adaptive shield and response applications apps +28
Onyxia launches AI-powered predictive insights to optimize security management an hour ago | www.helpnetsecurity.com
address ai-powered can challenges +24
Island raises $175 million at $3 billion valuation an hour ago | www.helpnetsecurity.com
capital coatue financing funding +10
Synopsys Polaris Assist automates repetitive, time-consuming tasks for security and development teams 2 hours ago | www.helpnetsecurity.com
ai-powered application application security assistant +30
FCC fines major wireless carriers over illegal location data sharing 2 hours ago | www.helpnetsecurity.com
access att carriers communications +26
Palo Alto firewalls: CVE-2024-3400 exploitation and PoCs for persistence after resets/upgrades 2 hours ago | www.helpnetsecurity.com
alto attackers aware concept +24
Cybersixgill Third-Party Intelligence module identifies potential supply chain risks 3 hours ago | www.helpnetsecurity.com
action cyber cybersecurity cybersixgill +25
ESET launches two MDR subscription tiers for SMBs and enterprises 5 hours ago | www.helpnetsecurity.com
and response businesses detection detection and response +15
ThreatX provides always-active API security from development to runtime 6 hours ago | www.helpnetsecurity.com
api api security application application protection +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer

@ Commit | San Francisco
View on infosec-jobs.com

Trainee (m/w/d) Security Engineering CTO Taskforce Team

@ CHECK24 | Berlin, Germany
View on infosec-jobs.com

Security Engineer

@ EY | Nicosia, CY, 1087
View on infosec-jobs.com

Information System Security Officer (ISSO) Level 3-COMM Job#455

@ Allen Integrated Solutions | Chantilly, Virginia, United States
View on infosec-jobs.com

Application Security Engineer

@ Wise | London, United Kingdom
View on infosec-jobs.com
View more jobs