CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra Collaboration Suite (ZCS).

Inside Jeffrey Epstein’s Push to Cleanse His Past Online

After he left jail in 2009, Mr. Epstein hired a host of people to make him look better on Google, Wikipedia and many other places on the web.

Researchers Uncover New Phishing Risk Hidden Inside Microsoft Copilot

Researchers reveal how Microsoft Copilot can be manipulated by prompt injection attacks to generate convincing phishing messages inside trusted AI summaries.
Arizona Daily Star

Newly released Epstein emails say Trump 'knew about the girls,' spent time with a victim

WASHINGTON — Jeffrey Epstein wrote in a 2019 email to a journalist that Donald Trump "knew about the girls," according to documents made public Wednesday, but what he knew — and whether it pertained ...
CSO Online

Resumés with malicious ISO attachments are circulating, says Aryaka

The latest example is detailed by researchers at Aryaka, who this week described a campaign by an unnamed threat actor who is distributing resumés containing a malicious ISO file to HR departments. It ...
CSO Online

ClickFix attackers using new tactic to evade detection, says Microsoft

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news. Regardless, they agree that infosec leaders need to educate employees about ...
AOL

YouTube TV billing scam emails are hitting inboxes

An email arrived that looked like a routine billing alert for YouTube TV Premium. Near the top, it displayed "BILLING FAILED" in capital letters. Below that, the message claimed the payment was ...
Miami Herald

A ‘fun’ friendship: Emails in Epstein files detail his links to Venezuela’s elite

Francisco D’Agostino, a Venezuelan businessman once sanctioned by the United States for helping Caracas evade oil restrictions, maintained a close relationship with disgraced American financier ...
The Verge

Why are Epstein’s emails full of equals signs?

It may seem like a secret code, but the answer might be an oddly specific technical error. It may seem like a secret code, but the answer might be an oddly specific ...
ConsumerAffairs

That email claiming to be from Microsoft support is probably a fake

Scammers are sending emails that appear to come from Microsoft, warning users their accounts face suspension or deletion. The messages use urgent language and official-looking logos to pressure ...
Lifehacker

What to Do If (or When) Your Email Is Leaked to the Dark Web

Jake Peterson is Lifehacker’s Tech Editor, and has been covering tech news and how-tos for nearly a decade. His team covers all things technology, including AI, smartphones, computers, game consoles, ...
Windows Central

Microsoft's Exchange Online quarantines legitimate emails mistakenly flagged as phishing — disrupting worldwide inboxes

A recent incident led Microsoft to identify an issue with its Exchange Online service that mistakenly flagged legitimate emails as phishing and quarantined them. "Some users' legitimate email messages ...