CSOonline

SMTP smuggling enables email spoofing while passing security checks

Security researchers have found inconsistencies in how some Simple Mail Transfer Protocol (SMTP) servers handle end-of-data sequences. This allows the injection of SMTP commands into email messages in ...
Ars Technica

MS SMTP service, "Press any key to continue?"

Do you have some kind of intrusion detection with active blocking running on the network? Are connections to the SMTP server restricted (in the properties of the SMTP service)?
Dark Reading

20 Million Trusted Domains Vulnerable to Email Hosting Exploits

Three novel attack techniques that chain together vulnerabilities found in numerous email-hosting platforms are allowing threat actors to spoof emails from more than 20 million domains of trusted ...
Ars Technica

Configuration of IIS6's SMTP service?

IIS6 has the lovely ability to send alert messages regarding the server. Now, with no actual mail server available to relay messages, and no qualified domain name, is it possible to send mail via ...