"Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails"

In a massive scam campaign dubbed "EchoSpoofing" by Guardio Labs, an unknown threat actor has sent millions of messages spoofing Best Buy, IBM, Nike, Walt Disney, and other popular companies by exploiting an email routing misconfiguration in email security vendor Proofpoint's defenses. According to Guardio Labs researcher Nati Tal, the emails were echoed from official Proofpoint email relays with authenticated SPF and DKIM signatures, dodging security protections. This article continues to discuss findings regarding the EchoSpoofing campaign.

THN reports "Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails"

Submitted by grigby1

Submitted by Gregory Rigby on