Archive | Security & Privacy

Introducing Zcast

On behalf of Zimbra, I am happy to introduce Zcast. In this new podcast series, Zimbra CMO Olivier Thierry covers a variety of technology topics that relate, primarily, to open source software, communication technology, business/product strategy, cybersecurity and data protection. The first in the series is with Zimbra partner MailGuard, founded in 2001 by CEO […]

Continue Reading

Email Protection Best Practices: SPF, DKIM and DMARC

As Zimbra Collaboration is a central communication hub for your business, it needs to be protected and secured. Zimbra Collaboration contains multiple antispam features like SpamAssassin, Amavis-d, etc. But, how do you protect against spoofing? How do we ensure outgoing emails are not going into the junk folder of recipients using other platforms like Google Apps, Outlook 365, […]

Continue Reading

Factoring Attack on RSA-EXPORT Keys (FREAK)

Zimbra is aware of a newly disclosed SSL/TLS vulnerability that provides a potential malicious actor with a method to perform a Man-in-the-Middle (MitM) attack — the vulnerability is being referred to as FREAK (Factoring attack on RSA-EXPORT Keys). For more information on the attack and how this applies to Zimbra, please head over to the […]

Continue Reading

When is a Lock, Not a Lock?

January was an interesting month for cryptography. The UK Prime Minister made some very strong statements about digital communication, essentially calling for strong encryption to be shirked by providing law enforcement with a back door. The US National Institute of Standards and Technology (NIST) announced the deprecation of several Federal Information Processing Standards (FIPS), one […]

Continue Reading

Half of All Email Systems will be Replaced in Two Years

Today, Zimbra announced the results of the Ponemon Institute’s “The Open Source Collaboration Study: Viewpoints on Security and Privacy in the U.S. and EMEA” report. Sponsored by Zimbra, the study surveyed 1,398 IT and IT security practitioners to learn about their companies’ involvement in the use of open source messaging and collaboration solutions, and their […]

Continue Reading

Zimbra Collaboration Updates (8.0.9 & 8.5.1)

Yesterday, Zimbra released updates to Zimbra Collaboration, both the 8.0.x and 8.5.x trees. Security These updates address the OpenSSL security advisory dated October 15 and provide a partial fix for POODLE (due to the need for both client and server changes). Zimbra Collaboration 8.0.9 and 8.5.1 update the OpenSSL libraries for nginx, OpenLDAP and Postfix […]

Continue Reading