ownCloud urges users to enable MFA after credential theft reports

File-sharing platform ownCloud warned users today to enable multi-factor authentication (MFA) to block attackers using ...

Dozens of organizations fall victim to infostealers after failing to enforce MFA

How the devices ended up compromised is unclear, but what matters is that Zestix was able to use the credentials to access ...
SecurityWeek

Complex Routing, Misconfigurations Exploited for Domain Spoofing in Phishing Attacks

Threat actors abuse complex routing and misconfigured protections to spoof domains and send phishing emails that appear to be ...
CSO Online

Microsoft warns of a surge in phishing attacks exploiting email routing gaps

Threat actors are abusing misconfigured MX records and weak DMARC/SPF policies to make phishing emails look internal, ...