Neue KI-Sortierung: Apple Mail preist Phishing-Nachrichten an
Die umstrittenen KI-Funktionen in Apple Mail können unter Umständen auch ein Sicherheitsrisiko sein. Schadbotschaften werden manchmal nach oben gespült.
Microsoft to Block Emails With 550 5.7.15 Access denied Error https://cybersecuritynews.com/microsoft-to-block-emails/ #CyberSecurityNews #cybersecuritynews #CyberSecurity #cybersecurity #Microsoft #Email
Business Leaders React to Warren Buffett Stepping Down https://www.byteseu.com/982859/ #America #announcement #BerkshireHathaway #business #BusinessInsider #BusinessLeaderReact #CEO #email #GregAbel #Investor #MarkCuban #time #Vision #WarrenBuffett #XPost #year
Mailo 
is a French e-mail provider that has a version of its e-mail service specially designed for children. It is called Mailo Junior and it's a safe and educational email service for children aged 6-14. 
Parents are able to monitor their children's address books and children will only be able to exchange emails with their parent-approved correspondents.
No advertising, no tracking, no profiling - just like an email service should be for everyone!
Mailo Junior offers two different interfaces. The Mini is perfect for kids aged 6 to 9, with basic features. And for those aged 10 to 14, the Junior interface is the way to go, with more features such as a calendar and virtual disc.
Later, the child's account can be upgraded to the standard Mailo, so they can keep their own address.
And most importantly: kids can email Santa directly from Mailo! 
How does it work? Parents receive their child's message to Santa Claus and then instruct Santa's helpers to create a personalised message just for their child. 
(well, sadly this feature is currently only available in French ) (Conditions: https://perenoel.mailo.com/mailo/fr/bureau-du-pere-noel.php)
The data is stored in France, at Ecritel (https://www.ecritel.fr).
More information: https://junior.mailo.com
Follow them on Mastodon: @hellomailo
(Linux news in original post)
FOSS NEWS
Firefox 138 released with support for copying links for background tabs using the tabstrip context menu on Linux and macOS systems, new Contrast Control settings, new “Show search terms in the address bar on results pages” option, Quick Actions toggle in the Address Bar section of Search settings etc.:
https://9to5linux.com/mozilla-firefox-138-is-now-available-for-download-heres-whats-new
Firefox 139 beta available with popup to accept Terms of Use, full-page translations within Firefox extension pages, support for preserving the transparency of PNG images when they’re pasted into Firefox:
https://9to5linux.com/firefox-139-is-now-available-for-public-beta-testing-heres-what-to-expect
(Yeah just keep pushing that Terms of Use and keep digging your grave, Mozilla. Well done!)
Thunderbird 138 released with in-notification email controls, enhanced high-contrast mode and more:
https://alternativeto.net/news/2025/5/thunderbird-138-adds-in-notification-email-controls-enhanced-high-contrast-mode-and-more/
Microsoft subtracts C/C++ extension of VS Code from forks like VSCodium and Cursor:
https://www.theregister.com/2025/04/24/microsoft_vs_code_subtracts_cc_extension/
(Wonder how long it will take for them to deny access to the whole extension store at this point... I already considered looking for alternatives to VSCodium, but all alternatives either don't have split view or website preview feature (even with extensions), so it's not that easy for me to switch. But maybe I'll do a research again and see e.g. if Pulsar already has some Live Server replacement, or maybe a custom localhost solution independent from any code editor, will see.)
Indian court orders a ban on Proton Mail, because of some bad actors sharing deepfakes via the service:
https://news.itsfoss.com/india-proton-mail-ban/
(What a BS excuse to ban a service. Why don't just ban the whole Internet at this point because of some scumbags doing malicious stuff? But of course this was just an excuse to get rid of an encrypted service, this isn't the first time the Indian government does this, they already banned Proton VPN earlier.)
(more FOSS news in comment)
been thinking of getting a non-google email. anyone know a service thats good and that I can try out without fear of it becoming expensive/bad in the future?
I’m changing if it works reliably, has (most of) its codebase open source, and can be trusted to not forward data from my emails to arbitrary buyers. I’d be ok with paying a small fee for it if its really good!
Ideally I’d setup my own email server, but that isn’t a real possibility for me within the near future.
@gyptazy You retain the #freedom to move to a different instance, or even run one of your own, if you don’t like the instance that you’re on. The #fediverse today reminds me of the #email landscape 30+ years ago, back before we collectively decided that three giant US corporations should handle most personal and commercial communications. Responsibility is difficult and expensive.
We don't always need to pay email providers to encrypt our messages to protect our privacy 
.
If you can't ditch your toxic email provider completely, you can still send encrypted messages through it. 
Here's a guide to understanding what GnuPG is and how to encrypt and decrypt messages - for free.
https://emailselfdefense.fsf.org/en
#email #EmailTips #Encryption #privacy
Earth Kasha Updates TTPs in Latest Campaign Targeting Taiwan and Japan
Earth Kasha, an APT group believed to be part of APT10, has launched a new campaign in March 2025 targeting government agencies and public institutions in Taiwan and Japan. The campaign uses spear-phishing to deliver an updated version of the ANEL backdoor, potentially for espionage purposes. Key updates include a new command to support BOF execution in memory and the use of SharpHide for persistence. The second-stage backdoor, NOOPDOOR, now supports DNS over HTTPS for C&C communications. The attack chain involves compromised email accounts, malicious Excel files, and various evasion techniques. This campaign demonstrates Earth Kasha's continued evolution and poses significant geopolitical implications.
Pulse ID: 6813da43537c3d86e6ba3ca2
Pulse Link: https://otx.alienvault.com/pulse/6813da43537c3d86e6ba3ca2
Pulse Author: AlienVault
Created: 2025-05-01 20:32:02
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
Fake Social Security Statement emails trick users into installing remote tool
A phishing campaign is targeting users with fake emails purportedly from the US Social Security Administration. These emails aim to trick recipients into installing ScreenConnect, a legitimate remote access tool that can be misused by cybercriminals. The campaign, attributed to a group called Molatori, sends emails with links to download the ScreenConnect client under misleading names. Once installed, attackers can remotely access the victim's computer, potentially leading to data theft and financial fraud. The campaign is difficult to detect due to the use of compromised WordPress sites for sending emails, image-based content to evade filters, and the legitimacy of the ScreenConnect application itself.
Pulse ID: 68133275aea46cd7781eec41
Pulse Link: https://otx.alienvault.com/pulse/68133275aea46cd7781eec41
Pulse Author: AlienVault
Created: 2025-05-01 08:36:05
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
XLoader Info-stealer Distributed Using MS Equation Editor Vulnerability (CVE-2017-11882)
An analysis reveals the distribution of XLoader info-stealer through phishing emails exploiting the MS Equation Editor vulnerability (CVE-2017-11882). The attack begins with a DOCX file containing an RTF document that creates a VBE file in a temporary folder. This VBE file, built using HorusProtector, contains the final malware and creates registry keys for execution. The malware process injects into RegAsm.exe and executes the XLoader info-stealer. The distribution method has evolved from single VBE files to Office documents with embedded vulnerabilities, indicating persistent risks in unpatched environments. Users are advised to update their Office products and exercise caution when opening email attachments from unknown sources.
Pulse ID: 68138a203701500b7458e62d
Pulse Link: https://otx.alienvault.com/pulse/68138a203701500b7458e62d
Pulse Author: AlienVault
Created: 2025-05-01 14:50:08
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
Date: 10,000 BCE
Problem: crops failed
Diagnosis: crop gods angry with you
Plan: propitiate gods, hope for best
Date: 1999
Problem: emails missing
Diagnosis: DNS
Plan: fix DNS
Date: 2025
Problem: emails missing
Diagnosis: email reputation gods angry with you
Plan: propitiate gods, hope for best
Stalwart Email Setup via @netopwibby #Development #Webdev #Tech #Email
Stalwart is an all‑in‑one mail server built for JMAP, the ultra‑modern email standard we should be using but the tech industry is cowardly and hella slow to move. Anyhoo! I recently setup a new mail server with Stalwart because updating my aging Mail‑in‑a‑Box instance was unappealing and I wanna use cool new things like JMAP....
https://blog.webb.page/2025-04-30-stalwart-tips-n-tricks.txt
Is there an opensource email desktop client that is:
headquaters and main maintainers are in EU, UK, Canada, Australia and other places where democracy still present? supports openpgp (at least signing and signatures verification) integrates well with Gnome can connect to Gmail (mostly to keep locally emails archive after creating a new email address to be used instead and during a transition period).
Threat Actors are Targeting US Tax-Session with new Tactics of Stealerium-infostealer
Cybercriminals are exploiting the US tax season to deploy Stealerium malware, targeting citizens through sophisticated phishing campaigns. The attack utilizes deceptive email attachments with malicious LNK files, leading to the execution of PowerShell scripts and the download of a PyInstaller-packaged executable. This payload injects into mstsc.exe and deploys Stealerium, an information-stealing malware that exfiltrates sensitive data from browsers, cryptocurrency wallets, and popular applications. The malware employs anti-analysis techniques, creates a hidden directory, and registers with a command and control server. It steals credentials from various sources, including browsers, gaming platforms, and messaging apps, while also capturing webcam images and Wi-Fi passwords.
Pulse ID: 68125c60e131717220211bb5
Pulse Link: https://otx.alienvault.com/pulse/68125c60e131717220211bb5
Pulse Author: AlienVault
Created: 2025-04-30 17:22:40
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
Cybercriminals Trick Tenants into Sending Rent to Fraudulent Accounts https://gbhackers.com/cybercriminals-trick-tenants-into-sending-rent/ #CyberSecurityNews #cybersecurity #THREATS #Email
No... my mother does not need 'exterior LED outdoor lighting' as a gift for Mother's Day.
Mother's Day Email marketing worse than Black Friday.
Surprised there wasn't more ads for electronics during Easter. "Resurrect your persecuted living room with a brand new 80" TV"
One of my least favourite tasks is wrestling with HTML email templates. I recently spent some time working on what I thought was a nice and attractive email template. It worked really well with the email clients and devices I tested it on, then it got delivered to Classic Outlook on Windows 10/11 and BOOM! Everything fell apart. Apparently, Classic Outlook is going to be around until 2029. I think I'll just stick to using plain text email templates until then.
