Trailbound Sketches is an Alaska-based company ran by Max Romey which produces art classes and documentary films, and which has been sponsored by bands such as Keen.

On 17 December 2025, Trailbound disclosed in its Discord server that someone had sent emails which spoofed their sender to be create@trailboundsketches.com, the legitimate email for Trailbound. According to a video posted on Discord, the spoofed email(s) were sent to "business contacts", and not members of the community. They stated most of the recipients of the spoofed email(s) recognized it as suspicious.

They said they "found the "weak link" in our Google Workspace", and corrected it. This apparently included setting up SPF, DKIM, and DMARC.

Trailbound Sketches has confirmed their systems were not compromised.

I have not seen a copy of the malicious email, and do not know its contents.

#TrailboundSketches #EmailSecurity

Chinese threat actor UAT-9686 has been compromising Cisco email security systems since late November with a custom backdoor called AquaShell. Organizations should immediately check Cisco Talos advisories for indicators and remediation guidance.

#SecurityLand #ThreatHorizon #Cisco #UAT9686 #EmailSecurity #APT #China

Read More: https://www.security.land/uat-9686-chinese-apt-cisco-email-gateway-attack/

Analysis of the Scripted Sparrow campaign highlights a BEC operation driven by consistency rather than technical complexity.

Key observations include disciplined domain rotation, repeated invoice templates, linguistically consistent messaging, and payment requests engineered to bypass manual review thresholds.

The absence of malware reinforces a recurring challenge: detecting fraud that operates entirely within expected business behavior.

How are teams incorporating behavioral signals into BEC detection?

Source: https://www.helpnetsecurity.com/2025/12/18/tracking-scripted-sparrow-phishing-campaigns/

Follow TechNadu for ongoing threat analysis and research-driven reporting.

#BEC #ThreatResearch #EmailSecurity #FraudDetection #SocialEngineering #Infosec

Active Cisco unpatched vulneratbility exploited in Secure Email Gateway appliances.
✔ Root-level access
✔ Chinese-linked APT
✔ No patch - wipe & rebuild recommended

Details:
https://www.technadu.com/cisco-zero-day-vulnerability-in-secure-email-gateways-exploited-in-chinese-hacking-campaign/616060/

#ZeroDay #EmailSecurity #Cisco

🤔 Understanding email encryption isn’t as simple as it sounds.
Email can be encrypted in several ways and at various stages — each protecting against specific threats.

We break down what really matters, the trade-offs involved, and how to choose the right balance for your privacy and security — including where encryption helps, and where it falls short. #fastmail #EmailSecurity #PrivacySecurity #Email

https://www.fastmail.com/blog/email-encryption/

Welchen IMAP-Archiver möchte eines denn aktuell verwenden?

Ich würde gerne auf einer NAS mit Docker arbeiten, da hier zwei verschiedene zur Verfügung stehen.

Alle Mails werden bei Mailbox.org und auf dem heimischen Stalwart direkt mit GPG verschlüsselt, eine lokale Suchfunktion ist daher nicht wichtig bzw. überhaupt möglich. ich möchte "nur" ein weiteres Backup aller Mails haben.

Bei Marius habe ich unter anderem Mail-Archiver und Bichon gefunden.

Was wäre Eure Empfehlung?

Vielen Dank im Voraus.

#emailsecurity #imap #selfhosting

#followerpower

PayPal Subscriptions abused to deliver phishing from legitimate servers.
https://www.technadu.com/paypal-subscription-feature-abused-in-sophisticated-phishing-campaign/615755/

• Emails sent from real PayPal infrastructure
• SPF/DKIM pass - spam filters bypassed
• Fake purchase alerts + phone-based social engineering

#Phishing #EmailSecurity #Infosec #FraudDetection

Multiple newly tracked phishing kits - including BlackForce, GhostFrame, InboxPrime AI, and Spiderman - illustrate how credential theft tooling continues to mature. Researchers note features such as MFA interception, iframe-based delivery, browser manipulation, and AI-assisted phishing email generation.

The reported overlap between different phishing frameworks may complicate attribution and weaken kit-specific detection logic, reinforcing the need for behavior-based defenses.

Which control gaps are most exposed by these trends?

Source: https://thehackernews.com/2025/12/new-advanced-phishing-kits-use-ai-and.html

Share your insights, engage in the discussion, and follow us for ongoing security coverage.

#infosec #cybersecurity #phishingkits #emailsecurity #identitysecurity #MFA #threatresearch #technadu

How do you know if your company email is secure? While the technology hasn't changed much over the years, cyberattacks target people primarily via email. From secure protocols to how to choose a good provider, here's what you can do to make sure that you're not letting in potential threats.

#emailSecurity #emailSetup #socialEngineering #cyberthreats #cybersecurity

https://negativepid.blog/a-secure-email-setup-guide/
https://negativepid.blog/a-secure-email-setup-guide/