A reader on the Mailop list pointed out that the Debian Linux wiki has a page for OpenDKIM and that this page can be interpreted as offering a suggestion to implement the "l=" option…
Read more
Last week on the Valimail blog, I shared a status update on the DKIM L= tag vulnerability that allowed bad guys to repurpose signed email messages, replace or append their own b…
On Friday, May 17, 2024, security researchers from ZONE published details of a vulnerability inherent to the DomainKeys Identified Mail (DKIM) email authentication protocol – on…
Multiple folks have shared this along lately and though I’ve mentioned it in passing in a prior post , I thought it would be good to pull together an overview and roundup of what…
Google seems to have put Gmail's BIMI logo checking (and the new blue checkmark ) on hold temporarily starting perhaps on Monday, June 5th, while they roll out a fix to addr…
Back in November, Spamhaus reported on how somebody managed to send a bunch of forged email through real FBI email servers . Brian Krebs broke down how it happened : The email re…
ClamAV is a popular open source anti-virus engine, that among other things, is popularly used to scan emails on Linux/Unix systems for bad stuff. There's talk of a vulnerab…
Over on the ExactTarget blog, Carlo Catajan explains the recently discovered (and since closed) Yahoo! Mail account security issue.
