Tag Archives: cybersecurity

ROPEMAKER: Email Security Weakness – Vulnerability or Application Misuse?

Blog by Matthew Gardiner, Senior Product Marketing Manager, Mimecast

Most people live under the assumption that email is immutable once delivered, like a physical letter.  A new email exploit, dubbed ROPEMAKER by Mimecast’s research team, turns that assumption on its head, undermining the security and non-repudiation of email; even for those that use SMIME or PGP for signing.  Using the ROPEMAKER exploit a malicious actor can change the displayed content in an email at will. For example, a malicious actor could swap a benign URL with a malicious one in an email already delivered to your inbox, turn simple text into a malicious URL, or edit any text in the body of an email whenever they want. All of this can be done without direct access to the inbox.

Described in more detail in a recently published security advisory, Mimecast has been able to add a defense against this exploit for our customers and also provide security recommendations that can be considered non-customers to safeguard their email from this email exploit.

So what is ROPEMAKER?

The origin of ROPEMAKER lies at the intersection of email and Web technologies, more specifically Cascading Style Sheets (CSS) used with HTML.  While the use of these Web technologies has made email more visually attractive and dynamic relative to its purely text-based predecessor, this has also introduced an exploitable 

attack vector for email read more

Share
Posted in ICT | Tagged , , | Comments Off on ROPEMAKER: Email Security Weakness – Vulnerability or Application Misuse?

The 6th Regional Cybersecurity Summit

With cyber threats evolving and threatening to affect organizations day to day activities, the cost of implementing IT security solutions has significantly increased from “US$75.4 billion in 2015 and expected to reach US$101 billion in 2018 (Gartner) and US$170 billion by 2020 globally, while the Middle East Cybersecurity market is expected to reach around US$10 billion by 2019, double the US$5 billion it was worth in 2014”. read more

Share
Posted in Events, ICT | Tagged , , | Comments Off on The 6th Regional Cybersecurity Summit

Enterprise Strategy Group reports The Pressing Need for Digital Risk Management

Dubai, UAE, August 3, 2017 – Digital Shadows, the industry leader in digital risk management, today unveiled a new report called: ‘The Pressing Need for Digital Risk Management’ from top analysts at the Enterprise Strategy Group (ESG) looking at the growing importance and rates of adoption of Digital Risk Management in business today. read more

Share
Posted in ICT | Tagged , , , , , | Comments Off on Enterprise Strategy Group reports The Pressing Need for Digital Risk Management

Mimecast Report: Nearly a quarter of ‘unsafe’ emails getting through to user inboxes

Dubai, UAE, July 30, 2017– Mimecast Limited (NASDAQ: MIME), a leading email and data security company, today announced the results of its third quarterly Email Security Risk Assessment (ESRA), a report of the results of tests which measure the effectiveness of incumbent email security systems. This quarter’s assessment noted a continued challenge of securing organizations from malicious attachments, dangerous files types, impersonation attacks, as well as spam – with nearly a quarter of “unsafe” email being delivered to users’ inboxes. Among the email security services assessed, the tests found that using Mimecast in conjunction with prominent cloud-based email service providers, including Google G Suite and Microsoft Office 365, would substantially improve results by blocking thousands more email-borne attacks. The report indicates the need for organizations to enhance their cyber resilience strategies for email with a multi-layered approach that includes a third-party security service provider. read more

Share
Posted in ICT | Tagged , , | Comments Off on Mimecast Report: Nearly a quarter of ‘unsafe’ emails getting through to user inboxes

Cybersecurity in the Aftermath of the Ransomware Attack – What Lies Ahead?

Comment by Vijay Michalik, Industry Analyst, Digital Transformation, Frost & Sullivan read more

Share
Posted in ICT, Magazine | Tagged , , | Comments Off on Cybersecurity in the Aftermath of the Ransomware Attack – What Lies Ahead?

Advances in Artificial Intelligence Will Help Machines Understand Human Thoughts using Brain Computer Interface

AI to present growth opportunities by leveraging thought-controlled interaction with machines, finds Frost & Sullivan’s TechVision team read more

Share
Posted in Events | Tagged , , , | Comments Off on Advances in Artificial Intelligence Will Help Machines Understand Human Thoughts using Brain Computer Interface