Vulnerability management is a key aspect of any cybersecurity program. Learn about Mailgun’s approach to vulnerability management and how we work with the security researcher community.
Whether you’re working from home or rejoicing in the return to your spinny desk chair, one thing is certain: email lives on. That's why it should come as no surprise that threat actors use email to deliver malware in nearly every case of a reported cyber-attack: 94% of cases, to be precise.
At Mailgun by Pathwire, account security is one of our biggest priorities, and we’re always looking for ways to make the Mailgun experience more secure and scalable. In an effort to do just that, we’re thrilled to announce that SAML authentication is now available for our Scale and Enterprise plan customers.
Recently we've become aware of a trend where customers are inadvertently exposing sensitive information along with their Mailgun credentials to the public. This particular issue arises with websites using the popular PHP framework, Laravel. Read more...
Here we go again. There’s been yet another shift in the ever-changing world of data privacy, and we wanted to make sure (as always) that we’re keeping you aware of the changes and helping you stay on top of the topic of data privacy.
Since Mailgun’s early days, we’ve made a point to ensure that our senders could send their emails as securely as possible. When we announced TLS support in 2014, we did this with the customer in mind, and we continue to do so now as we move to deprecate TLS 1.0 and 1.1 in favor of the more secure TLS version 1.2.
Mailgun takes the security of our users’ accounts very seriously, and when it comes to a compromise of an account - no one is having any fun. With so many things that can contribute to an account compromise, we took a step back to look at the various attack vectors used by bad actors trying to gain access to accounts.
Here at Mailgun, we take cybersecurity extremely seriously. When it comes to our customers’ emails, a compromised account can mean compromises for their end-users as well.
In case you need a refresher, phishing emails are emails that spoof legitimate businesses to gain your personal information. These emails lead to a landing page that asks you to input your personal data like your login or social security number, thus collecting your info.
We talk a lot about security around here at Mailgun, but what exactly do we do about it? Besides features like 2FA and teaching users how phishers get your personal information; we want people to help us shore up our backend, too. That’s why today we’re happy to announce our public bounty offerings with Bugcrowd.
Did you know that an overwhelming majority of the email going around the interwebs each day is spam? You may ask yourself, “Why do people spam?” The short answer is, it’s lucrative.
We’re not going to beat around the bush – phishing sucks. It sucks to fall for a phishing attempt, and it sucks to have phishers pose as you. We can go on and on about how to protect yourself from phishing (and don’t worry, we will by the end of this post), but we stopped and thought – have we ever talked about how phishing happens from our perspective?
