"Cloud Email Filtering Bypass Attack Works 80% of the Time"

Researchers have discovered a misconfiguration in popular enterprise cloud-based email spam filtering services. The study shows that organizations are far more vulnerable to email-based cyber threats than they realize. In a paper titled "Unfiltered: Measuring Cloud-based Email Filtering Bypasses," the authoring academic research team found that services from vendors such as Proofpoint, Barracuda, Mimecast, and others could be evaded in at least 80 percent of the major domains examined. According to Sumanth Rao, a graduate doctoral student at the University of California, San Diego, and the paper's lead author, the filtering services can be bypassed if the email hosting provider is not set up to accept only messages from the email filtering service. This article continues to discuss key findings from the study.

Dark Reading reports "Cloud Email Filtering Bypass Attack Works 80% of the Time"

Submitted by grigby1