Service Alert

1. Service Alert
1. Due COVID-19 Outbreak, support team is working from home so kindly contact us on Logix support numbers: 7208042012, 7208042011, 8657583920, 8657583919, 022-41024545
=====================================
2 July 2021

Security Advisory : [Postponement update] TLS 1.2 will put in force from 31 December, 2021 & TLS 1.0 / 1.1 is be being discontinued for security reason

Dear Valued customer,

Greetings!

This is to inform you that, the upcoming change of blocking TLS 1.0 and 1.1 protocol over smtp in our setup has been postponed. The decision was taken with the consideration that due to ongoing Covid pandemic many customers were facing difficulties for complying with change requested as most of the users were still working from home.

The activity will be postponed till 31December ,2021. Meanwhile we are requesting you all to upgrade to TLS 1.2 supported OS,Browser and Email client as mentioned below :

O/S - Windows-10 with SP1 and above
Email Client - Outlook 2010 SP2 and above.
Browsers - Latest available versions.

In case any query, feel free to contact us.
=====================================
14 June 2021

Security Advisory : Retiring TLS1.0 and 1.1 for SMTP service

Dear Valued Customer,

Greetings!

Thank you for patronizing Logix services.

As a part of security enhancement, we are performing activity of retiring TLS1.0 and 1.1. Please find below details about this activity.

Description:
LOGIX is discontinuing the use of TLS 1.0 and 1.1. Customers will be required to use TLS 1.2 and above for all communications with their instances.

What is the risk?:
Among other weaknesses, TLS 1.0 is vulnerable to man-in-the-middle attacks, risking the integrity and authentication of data sent between a client and smtp/webmail servers.

Impact:
Any services that currently rely on TLS 1.1 or older will no longer be available. The two most likely reasons LOGIX customers see TLS 1.1 traffic or older is due to customer usage of older web browsers, older customized integrations.

Why:
The use of TLS 1.2 is a recommended security best practice that provides a higher degree of privacy and data integrity over previous versions and to maintain compliance with the latest industry standards.

Reference Links:
https://www.venafi.com/blog/why-its-dangerous-use-outdated-tls-security-protocols
https://www.digicert.com/blog/depreciating-tls-1-0-and-1-1

TLS 1.0 has several flaws. An attacker can cause connection failures and they can trigger the use of TLS 1.0 to exploit vulnerabilities like BEAST (Browser Exploit Against SSL/TLS). Websites using TLS 1.0 are considered non-compliant by PCI since 30 June 2018.
The existence of TLS 1.0 and 1.1 on the internet acts as a security risk. Clients using these versions are suffering from their shortcomings, while the rest of the internet is vulnerable to various attacks exploiting known vulnerabilities, for almost no practical benefit.

When:
LOGIX will stop by Wednesday 7 July 2021 6:30 PM IST without any exception. This is the schedule of the upcoming bulk changes:

Required Action:
LOGIX is monitoring customer usage of TLS 1.1 and older in our environment. If you are using anything older than TLS 1.2. Please review this information and update any relevant services to use TLS 1.2 or higher.

Below are the supported products:
O/S - Windows-10 with SP1 and above
Email Client - Outlook 2010 SP2 and above.
Browsers - Latest available versions.


In case any query, feel free to contact us.
=====================================
Dear Valued Customer,

We thank you for your association with us. This email intends a general communication to our customers especially using the Net4India Services for Domain Registration and or DNS.

Recently & also in past, we received reports from several customers about unable to receive emails & also their website being down. It was observed that the domain name of these customers are either with Net4India OR the nameservers are registered with Net4India.

There are/were instances where Net4India Nameservers were not reachable due to which the domain DNS resolution fails thus leading to issues such as not receiving emails, websites or applications running on FQDN are impacted. There are also issues where Customers are unable to renew their domain name leading to domain expiration

We request to kindly go through the procedures as which are listed on NIXI & ICANN Website to resolve the issue since Logix do not hold control on Domain Registration/Nameservers services being provided by Net4India

https://www.registry.in/registry/images/page/Email_Net4_29012021.pdf

https://www.icann.org/en/blogs/details/icann-support-for-registrants-and-those-impacted-by-net-4-india-limited-17-11-2020-en

If you are experiencing issue in receiving emails from external domains, please check whether your domain/DNS service is with Net4india which is down due to which this issue is observed.

1.You can lookup your domain/DNS from below links to check who is your domain registrar and who is DNS service provider:

https://www.dnswatch.info/dns
https://www.drwhois.com/

2. Issue is not with mail server at Logix end.
3. We have no scope to shift it to us unless Net4 is sharing us domain auth key for domain name transfer
4. For dns shifting also, domain name control must b up where we have to update NS records
5. please find below details helpful to shift domain/dns from Net4:

Regarding domain names transfer, auth key is not available in Net4portal, you will have to request for auth key from your Net4portal by clicking on retrieve option then you will receive mail on your registered email address from Net4system.

In case you are experiencing difficulties contacting Net4 to get auth keys, then below are Customer Support details on which you may send email from your registered and authorized email address:

transfer-compliance@net4.com
renewals@net4.in
bajaj.vikram@gmail.com
corporatesupport@net4.in
icannresolutions@net4.com
pankaj.s@net4.in
pankaj.s@net4.com
update@net4.in

Below are few contact details we managed to gather helpful for customers who want domain name transfer from Net4 to us:

+9196508 21618 - Mr. Pankaj (available both by phone and whatsapp)
Ms. Shailee Arora (Net4 renewal department Head) is 8368981559.
=====================================
Volume mail service (Sendgrid) security advisory:

Over the past several months we have attempted to inform you of the requirement to update your authentication method with Twilio SendGrid to API keys exclusively by March 24th, 2021.

What action is required?

Follow these steps to identify and replace your authentication method to API Keys and then implement Two-Factor Authentication (2FA) for all users to enhance security.

If you do not take action, those API and SMTP requests (including any applicable mail/send requests and expected email delivery) will be rejected on March 24th, 2021.

If you have already updated your authentication to API Keys exclusively, or plan to prior to this deadline, please reply to this email to let us know you acknowledged these requirements and the deadline.

If you require further discussion or would like to request an extension to this deadline, please email us with (1) your reason for requesting an extension and (2) the date you could meet these requirements.

If you do not know or do not manage your SendGrid integration, please forward this information to someone at your organization who is likely to and include us in your email.

We’d like to thank you in advance for your prompt attention to these requirements. For more information about how you can enhance the security of your account, view https://secure-web.cisco.com/1bnzB9EdWzOh99KE2TdYY1CHNgEl-enBvSboWUwo1CedUz_YTiYRBFpf4eL6aNr438pUFoy9kvc8vgXIAwm-sTjbb4iW7WheSoUAtPwM83ExGhcj03jIAQYjNgVB_qTeuK4sFq2VaDswD9Grg9bozmlprh2aSjSI9AsgksisdPvlyALI_EYQs6w5Bu78FZXXij9UAZpk1p7zw6Cv1qEsRpAqxLb-U3hYIccHi75AJzWxYblRL3yUVLSj9ARi6l4CIBugIrBlTK-XSWA6vZKZ7QjHEUS7yLdLx8CpfOCnw4wwnavplBFwla7MX35EWGzl4pCc5t7TRK6hj73MzG3wmaBF714surjTEUfsdXm2fSkE8E9o-Xgg0-WNpv5ql-sfB7IChO38caBce-BTsdL2lKXGIDwsY-ZCN04dnM-Qfzi8T45XWHloesgqKv7m2Uz-AQIS3tN7Q3dCDmpOtbealbD55VCWc3ahuGJclxxw0LAo/https%3A%2F%2Fsendgrid.com%2Fblog%2F7-best-practices-to-protect-your-twilo-sendgrid-account-and-sending-reputation%2F.
=====================================

Launch of Logix Supportdesk portal update with customer friendly ticketing options:

Dear Valued Customer,

Wish you a very happy and safe new year from Logix!!! Thank you for patronizing Logix services and association with us.

To serve you always in a better way, we have made certain changes in Logix support desk portal https://supportdesk.logix.in with more option to specify your query/issue in moderated manner. Please find attached document guidelines with support desk changes which are recently incorporated.

We have introduced 4 new dropdown options while raising a Support Ticket, these newly added options are as below:

A. Service

Under this option we request you select the kind of service availed by your esteemed organization. Multiple options are provided for ease of selection

B. Type of Complaint

Request you to provide if you are having a problem, question/query or a sales inquiry
C. Type of Issue

Multiple options shall be provided here. Please select the option which describes your requirement in a best possible way. In case a suitable option is not found, then please select the option “Other” and provide details in the subject line. Under description, please state your requirement in as details as possible.

D. Impact of the Issue

Under this there only 3 options available:

More than 50% Users impacted
Less than 50% Users impacted
Specific Users

Based on your selection of above four fields, Severity and Priority of the said problem will be automatically calculated.

Also be informed that, if your issue is marked critical by the ticketing system, we will attend it on priority. We are always delighted to assist you to make sure your business processes run seamlessly.

In case you have any query submitting the ticket, please feel free to reach to us.

Assuring you our best of support as always!!!
=====================================
Update on 28 October 2020:

Security Advisory !!! Enabling Two factor authentication and API authentication for your volume mail account

Dear Valued Customer,
Thank you for patronizing Logix volume mail service.
As a part of security importance, there is an important change Volume mail service OEM is implementing for the security of your volume mail account. As of December 9th, 2020, OEM will be making two changes: Will accept only API key authentication for all endpoints in order to improve the security of your volume mail account.
Will also require enablement of Two-Factor authentication for your volume mail account and Teammates.

Currently system accepts Basic Authentication on the following: SMTP All v2 API endpoints v3 API Non-Mail/Send endpoints v3 API mail/send accepts API Keys only and does not allow Basic Authentication If a customer enables 2FA without having activated the new API keys, all API requests using username/password will be rejected. Therefore, we recommend prioritizing the update of your authentication methods to API Keys before enabling 2FA in order to avoid breaking your integrations. Here is what you need to do: Upgrade your integration to authentication with API Keys (link: https://sendgrid.com/docs/for-developers/sending-email/upgrade-your-authentication-method-to-api-keys/ ) – This should be done on both Mail Send and Non-Mail Send accounts.

NOTE: This step is critical to complete before the December 9, 2020 deadline. API requests that do not contain an API key after that date will fail without being processed.

Set up 2FA access (link: https://sendgrid.com/docs/ui/account-and-settings/two-factor-authentication/) for all Subusers and Teammates within your accounts.

NOTE: If you aren’t able to complete step two in advance of the deadline, users will be asked to set-up 2FA when they log-in to their Twilio SendGrid account.

FAQs and answer for your easy reference:

1. Please confirm whether smtp.sendgrid.net will be in service and live with username and password of sendgrid UI credentials ?
Starting December 9th, SMTP will continue to be available but we recommend setting up API Keys with SMP so there is no break in integration. Please let us know if this will be possible. Linked here (https://sendgrid.com/docs/API_Reference/SMTP_API/integrating_with_the_smtp_api.html#-Integrating-with-Sendgrid) is the integration guide for SMTP with API Key instructions.

2. What if user is using smtp.sendgrid.net, Mail client such as MS Outlook or Mozilla Thunderbird supports only smtp server hostname or IP for outgoing, how API will be used in such cases ?
The customer will still be able to use SMTP.sendgrid.net but we recommend setting up API Keys with SMP so there is no break in integration. Please let us know if this will be possible. Linked here (https://sendgrid.com/docs/API_Reference/SMTP_API/integrating_with_the_smtp_api.html#-Integrating-with-Sendgrid) is the integration guide for SMTP with API Key instructions.

3. Two Factor authentication must be only for Sendgrid.com UI and not for SMTP authentication or API, our customers have faced issue in SMTP authentication due to 2 FA enabled reasons. What will be solution on this?

This is true. 2FA is only going to be prompted when you try to sign into the SendGrid UI after December 9th. However, we will no longer be accepting Basic Authentication (username and password) as well. That being said, we are recommending changing all mail send integrations (SMTP, API v2, API v3) to the use of API Keys.

Documentation linked here https://sendgrid.com/docs/for-developers/sending-email/upgrade-your-authentication-method-to-api-keys/

Here is what you need to do: Upgrade your integration to authentication with API Keys – This should be done on both Mail Send and Non-Mail Send accounts.

NOTE: This step is critical to complete before the December 9, 2020 deadline. API requests that do not contain an API key after that date will fail without being processed. Setup 2FA access (link: https://sendgrid.com/docs/ui/account-and-settings/two-factor-authentication/) for all Subusers and Teammates within your accounts.

NOTE: If you aren’t able to complete step two in advance of the deadline, users will be asked to set-up 2FA when they log-in to their volume mail account. Do let us know if you have any query regarding this security advisory.

===================================================
Security Advisory!! Update Logix SPF in your DNS

Dear Valued customer,

Greetings from Logix !!! Please ensure that Logix\\\\\\\\\\\\\\\'s SPF record is included in your existing SPF record (applicable only in case you are using our SMTP services). SPF allows receiving mail server to check during mail delivery that a mail is received from a your genuine domain.

Below is the SPF record to be included in your existing SPF record.

Domain Type TTL Record Domain name TXT 86400 v=spf1 include:_spfnew.logix.in ~all

Kindly ignore the given SPF record if it is already updated for your domain; also ignore this if you are not using Logix smtp service.

How to check and read a SPF record for a domain:

Method 1: The SPF record is stored within a DNS database and is bundled with the DNS lookup information.

You can manually check the Sender Policy Framework (SPF) record for a domain by using NS lookup as follows:Open Command prompt (Start > Run > cmd):

1.Type "nslookup -type=txt" a space, and then the domain/host name. e.g. "nslookup -type=txt logix.in"
2.If an SPF record exists, the result would be similar to:"v=spf1 include:_spfnew.logix.in ~all
3.If there are no results or if there is no "v=spf1" property, then there is a problem retrieving the record for the domain, or one does not exist.

Method 2: 1.Open https://www.dnswatch.info DNS Lookup tool, Reverse DNS lookup tool - www.DNSWatch.info DNSWatch.info is available to anybody for free.

This is only possible since we display ads to cover our expenses. An ad blocker installed on your browser is blocking ads on DNSWatch.info.www.dnswatch.info

2.Enter your domain in Hostname or IP field, select type as TXT and click on Resolve

3. If an SPF record exists, the result would be similar to: "v=spf1 include:_spfnew.logix.in ~all

4. If there are no results or if there is no "v=spf1" property, then there is a problem retrieving the record for the domain, or one does not exist.
===================================================

Security Advisory | possible threat of cyber attacks with subject of COVID

In a wake of potential cyber offensive, as per Certified advisory, in the guise of a free Covid test phishing attack, we have set necessary policy at our antispam gateway so that such threat alike mails will get quarantine as spam. Preventive Measures at user level

1. Don\\\\\\\\\\\\\\\'t open or click on attachment in unsolicited E-mail, SMS or messages through Social Media
2. Exercise caution in opening attachments, even if the sender appears to be known
3. Beware of e-mail addresses, spelling errors in e-mails, websites and unfamiliar e-mail senders
4. Do not submit personal financial details on unfamiliar or unknown websites / links
5. Beware of e-mails, links providing special offers like Covid-19 testing, Aid, Winning prize, Rewards, Cashback offers

Source: https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES02&VLCODE=CIAD-2020-0040

Security Advisory | Quarantined dangerous file extensions via email. Due to security reasons, we have quarantined below dangerous file extensions, hence if any mail is having these extensions, the attachments will be blocked by Logix security gateway.

exe java iso bat msi scr dll ade adp chm cab cmd cpl hta ins isp jar jse docm lib lnk mde msc msp mst vxd wsc wsf wsh js ws pif sct shb vb vbe vbs app asp aspx asx bas cer cnt com crt csh der diagcab fxp gadget grp hlp hpj htc inf its jnlp ksh mad maf mag mam maq mar mas mat mau mav maw mcf mda mdb mdt mdw mdz msh msh1 msh2 mshxml msh1xml msh2xml msu ops osd pcd pl plg prf prg printerexport ps1 ps1xml ps2 ps2xml psc1 psc2 psd1 psdm1 pst py pyc pyo pyw pyz pyzw reg scf shs theme tmp url vbp vhd vhdx vsmacros vsw webpnp website xbap xll xnk 7z
===================================================

Security Advisory | Enabling Two Factor Authentication on https://cpanel.logix.in

Dear Valued Customer,

Greetings!!

In current difficult times, we have observed increase in attacks on email services across globe. Normally attacks have been seen on Admin accounts so that to compromise the same to gain the access of email services.

To over come this issue, we have already extended two factor authentication for admin authentication used for https://cpanel.logix.in long back. It was observed that many admins are still not registered for two factor authentication. Two-factor authentication is the mechanism which is an additional layer of authentication addition to password. The two components of two-factor authentication are: Something you know (e.g., password/PIN, etc) Something you have (a token, cell phone, etc)To ensure security of your email services, we expect you to immediately register for two factor authentication.

In case you have already did the same, please ignore this email. The current option of bypassing the two factor step will be available till 31st July 2020 hence upon two factor registration will become must have requirement for logging into https://cpanel.logix.in Kindly acknowledge the same and register for two factor asap.

In case of any help required Logix support is available 24x7.

==================================================
Security Advisory | Enabling password policy for user mailbox security

Dear Valued Customer,

Mailbox Passwords are an important aspect of email security.

They are the front line of protection for user accounts. A poorly chosen password may result in a compromise of user mailbox or entire domain. As such, all your employees (including contractors and vendors) with access to email services are responsible for taking the appropriate steps to change the password timely so that secure the access to their mailbox.

To ensure such protection we expect an Organisation should opt for password policy for its mail services where Organisation can setup a time line for password change which is recommended be any time between 30 days to 90 days based upon Organisation’s security Policy. Being service provider we have highly recommend to have not only password policy but to change the password with complexity in case the same has been not change for long time as a part of securing your email access.

To implement the same we have decided to enable password policy across all domains hosted with Logix if the same has not been opted by customer.
In addition to this we also want all your end users who all using email service must change their password with renewed complexity to implement highly secure access. The purpose of this policy is to establish a standard for the creation of strong passwords, the protection of those passwords, and the frequency of change. The complexity password will be remain strong which is as below:

At least one UpperCase letter.
At least one LowerCase letter.
At least one Number.
At least one Special Character # @ % ! ^ * = - + ; . :
At least 8 characters long.Three or more Consecutive Alphabets or Numbers can not be used in a Password. e.g. 123, abc Firstname/LastName/Domain Name/Common

Password can not be used in a Password.

Post this update any Customer domain without password policy will be requested to opt the password policy as a must have requirement to manage its access security effectively Logix support team will be available 24x7 incase of any help required.

Note: If your domain is already having the password policy enabled then please ignore this email.

===================================================
Email Security Advisory : Bulk mail blocking at Email Security Gateway:

Dear Valued Customers,

It has been observed that all major ISPs and ESPs across globe has been blacklisting bulk mail sender’ as well as spam sender’s IP frequently. Based on our monitoring and analysis, it was identified that bulk mails were being sent to various users by Logix various customers.

Due to multiple bulk mail instances where few customers are regularly sending bulk mails using Logix email gateways and exploiting Logix email security services which in tern posing challenges for Logix email security gateways where Logix IPs are getting blacklisted. Going ahead Logix has decided to opt zero tolerance towards bulk mail sending via Logix email gateway to outside world. With this change any attempt of sending bulk mail will block at email security gateway itself since Logix has implemented bulk mail blocking policy within its outbound email security gateways.

In case of requirement for sending bulk mails, we are suggesting our customers to opt Logix Volume mail services.
To avail the services, please contact our sales team accordingly.
Let’s maintain the email hygiene and avoid sending bulk mail in future to have hassle free email services.
===================================================