CSOonline

SMTP smuggling enables email spoofing while passing security checks

Security researchers have found inconsistencies in how some Simple Mail Transfer Protocol (SMTP) servers handle end-of-data sequences. This allows the injection of SMTP commands into email messages in ...
Bleeping Computer

Exchange Online adds Inbound DANE with DNSSEC for security boost

Microsoft is rolling out inbound SMTP DANE with DNSSEC for Exchange Online in public preview, a new capability to boost email integrity and security. As the Exchange team explained on Wednesday, ...
Threat Post

Easy WP SMTP Security Bug Can Reveal Admin Credentials

A poorly configured file opens users up to site takeover. Easy WP SMTP, a WordPress plugin for email management that has more than 500,000 installations, has a vulnerability that could open the site ...
Bleeping Computer

Office 365 adds protection against downgrade and MITM attacks

Microsoft is working on adding SMTP MTA Strict Transport Security (MTA-STS) support to Exchange Online to ensure Office 365 customers' email communication security and integrity. Once MTA-STS is ...
Ars Technica

Exchange 2010 R2 - Force smtp security (TLS)

I have a exchange setup and everything is working fine. When I setup IMAP (since all clients do not support RPC over HTTP), I specify IMAP and for security I have to choose SSL or TSL, but for SMTP I ...