Domain Spoofing : Mitigation

There was a time, when mail spoofing was an art, was a thing to impress people, was a way to phish attack someone.With increasing intelligence in spam filters – it became harder, you need good IP reputation to deliver mail to box.But now it has become almost impossible to spoof address like [email protected] . Why […]

Wisdom – DMARC Deployment

Deploy SLOWLY, We strongly recommend ramping up DMARC use slowly by employing these policies in this order. First, monitor your traffic and look for anomalies in the reports, such as messages that are not yet being signed or are perhaps being spoofed. Then, when you’re comfortable with the results, change the TXT record policy setting […]

“Mail from” and “From” header

In simple terms MAIL FROM – Mr.Blue used XYZ post office to send a mail envelope to Mr.Red, and if Mr.Red’s post office cant locate Mr. Red then the envelope can be sent back to XYZ Post office to be returned to Mr.BlueFROM – This message is FROM Mr.Blue to Mr. Red (Receiver). Now the technical […]

What is DMARC and what are its advantages?

This article is part of Explained Simply Series, A series that aims to explain complex terminologies in a short & concise manner. DMARC, which stands for “Domain-based Message Authentication, Reporting & Conformance”, is an email authentication protocol. It builds on the widely deployed SPF and DKIM protocols, adding a reporting function that allows senders and receivers […]

What is Email abuse ?

Anyone can send email to anyone else, within seconds, at zero apparent cost. That is the greatest strength of the Internet mail system. It is also its greatest weakness. Because the system is biased in favour of delivery, it is prone to abuse in the form of spam, viruses, and phishing scams. The very features […]

What is Phishing ?

Definition The term phishing is a general term for the creation and use by criminals of e-mails and websites – designed to look like they come from well-known, legitimate and trusted businesses, financial institutions and government agencies – in an attempt to gather personal, financial and sensitive information. Why ? These criminals deceive Internet users into disclosing their bank […]

Why DMARC?

People and companies around the world suffer from the high volume of spam and phishing on the Internet. Over the years several methods have been introduced to try and identify when mail from (for example) myrealcompany.com really is, or really isn’t coming from myrealcompany.com. However: These mechanisms all work separately and  isolated from each other Each […]

Forging the sender address

One of the ways an attacker tries to penetrate an organisation is by emails. An attacker in a remote part of the planet can send a malicious email and start attacking an organisation. For obvious reasons an attacker would not want to be identified, therefore the attacker forges the sender address to cover his/her tracks. […]

Types of E-Mail Abuse where the Sender Address is Forged

Spammers  – As they want to avoid receiving non-delivery notifications (bounces) to their real addresses. Fraudsters  – As they want to cover their tracks and remain anonymous. Computer worms – Worms want to cause confusion or just don’t care about which sender addresses they use. Phishers (password fishers) want to impersonate well-known, trusted identities in order […]

DKIM KEYS Consideration

Messages with DKIM signatures use a key to sign messages. Messages signed with short keys can be easily spoofed (see http://www.kb.cert.org/vuls/id/268267), so a message signed with a short key is no longer an indication that the message is properly authenticated. To best protect  users, Gmail will begin treating emails signed with less than 1024-bit keys […]

Scroll to top