Collaborate Disseminate
I have received a threatening message in my email primary@gmail.com from my other email address alias@mydomain.com. Note that alias@mydomain.com is an alias to primary@gmail.com.
Also, of course, I own mydomain.com and it is registered in … Continue reading SPF result using alias email address
Let’s say:
alice@example.com sends an email to bob@bob.com.
Bob owns the domain bob.com but doesn’t manage an emailing server. Instead he uses an email forwarding service (provided by his registrar / DNS service, for example Cloudflare d… Continue reading How can an email forwarding service send email with a "From" from a domain they don’t control, and still pass SPF?
Let’s say:
alice@example.com sends an email to bob@bob.com.
Bob owns the domain bob.com but doesn’t manage an emailing server. Instead he uses an email forwarding service (provided by his registrar / DNS service, for example Cloudflare d… Continue reading How can an email forwarding service send email with a "From" from a domain they don’t control, and still pass SPF?
If we are self hosting our own email server with mydomain.com with a self sign CA for S/MIME. What are some possible ways that our email content can get leaked?
Then if we use PGP email, does it make any difference? Since we agree that wit… Continue reading With selfhosting email server, selfsigned certificate, does it make a difference with PGP mail, What can be leaked?
Despite setting up strict DMARC, SPF, and having DKIM enabled, I am still easily able to spoof the "From" address. I can easily do this with PHPMailer on my Mac and even with some free 3rd party tools like
https://emkei.cz/
http… Continue reading Still able to spoof emails with strict DMARC, SPF and DKIM enabled
What is the most secure way and privacy-focused to send email now (current tech)? PGP or S/MIME, Given both parties willing to learn the technical parts?
Use case, both of parties use third party email services, like gmail/hotmail/proton… Continue reading What is the most secure way to send email now? PGP or S/MIME, Given both parties willing to learn the technical parts
I have quite a few questions about email security on my custom domains (SPF, DKIM, DMARC,… etc).
Let me start with Why this email got forwarded successfully, please allow an image for the words, an XML report you find below.
I simply… Continue reading Spoofed forwarded email? Help with analyzing of DMARC report
Why did this email get forwarded successfully? An XML report is below:
I simply cannot understand the delivery status, a transcript follows:
This email has been automatically forwarded. Despite the fact that DMARC has failed, the email w… Continue reading Spoofed forwarded email? Help with analyzing of DMARC report
Since yesterday, one of my work email addresses is used to send spoof emails with phishing attachments. SPF and DKIM was configured on my domain name but not DMARC, but since yesterday in the evening, everything is configured and I receive… Continue reading Spoof email is using my domain name email address but target almost only my contact list with credible content body
An email has been circulated with the username of our organization, with some internal users and also to the customers. Observed that IP 40.92.46.74, which is Microsoft one. We have been using our organizational email-signature for all our… Continue reading Impersonating phishing incident [closed]