Email Spoofing – Page 22 – WindowsTechs.com

Few U.S. hospitals secure their email against phishing, Global Cyber Alliance says

Posted on June 15, 2017 by Shaun Waterman

Fewer than one-third of the largest 98 public and private hospitals in the United States secure their email against phishing and spamming, according to data released Thursday. The Global Cyber Alliance said that of the 50 largest public hospitals, only six employed Domain-based Message Authentication, Reporting and Conformance, or DMARC — an email authentication policy and reporting protocol developed a decade ago, originally by PayPal. Of the 48 biggest for-profit hospitals, only 22 used DMARC. The figures led GCA to describe U.S. health care providers’ email security as being in “critical condition.” The alliance also notes that, according to the latest Verizon Data Breach Investigative Report, 66 percent of malware installed on healthcare providers’ IT networks was delivered via email attachment — something normally done using a spoofed email address. DMARC helps prevent phishing and other email spoofing attacks, when an email is made to look as if it comes from a company, […]

The post Few U.S. hospitals secure their email against phishing, Global Cyber Alliance says appeared first on Cyberscoop.

Continue reading Few U.S. hospitals secure their email against phishing, Global Cyber Alliance says→

Why is still so easy to send phishing emails?

Posted on May 25, 2017 by Dylan Nicholson

When I first started playing around with how SMTP worked over 20 years ago, I remember being somewhat surprised how easy it was to make an email appear in someone else’s mailbox that looked like it came from anyone at all.

T… Continue reading Why is still so easy to send phishing emails?→

How do I investigate where personal information in a fraudulent email was leaked from?

Posted on May 16, 2017 by Djuro

I have seen an email which is obvious from the content that it’s a phishing/spurious email. However, the personal content is quite revealing and specific to that individual. How could I go about investigating how and where this personal da… Continue reading How do I investigate where personal information in a fraudulent email was leaked from?→

Yahoo email going to junk on receiver side

Posted on April 29, 2017 by Ali

I have a serious issue, i have a list of 100 people to whom i send an email from YAHOO ACCOUNT on weekly base, problem is they received my email in junk. what is the problem ?? and either problem is on my side or on receivers… Continue reading Yahoo email going to junk on receiver side→

SMTP Email Spoofing

Posted on April 27, 2017 by lisa17

While testing my SMTP server using a telnet session from home, I was able to generate an email using the following commands:

telnet MyEmailServer 25

HELO MyEmailServer

MAIL FROM: RandomValidEmail@mydomain.com
… Continue reading SMTP Email Spoofing→

Accidentally opened a .htm email attachment – Help!

Posted on April 11, 2017 by DjC

Got an email from someone i knew (their account was hacked obvs) and had a swift.htm file attached. I clicked on it and it opened up a blank browser window. Then after reading some forums I decoded it

here’s the original: ht… Continue reading Accidentally opened a .htm email attachment – Help!→

simple question about smtp server ( msa to mta ) security design?

Posted on April 5, 2017 by Noob

Not sure if this is due to security; hence the reason i am asking here.
I have 2 SMTP server and a couple of unix servers

the actual mailserver running on window. client connect to it and download mail.
a postfix SMTP server running in one of the unix box use for relaying mail to 1).

We call my mailserver MTA1 and the POSTFIX server MTA2

I am a novice in mail and i realize these following different flows when some of the different unix servers are sending mail to the public

They can either

unix server (mailx) –> (localhost-sendmail) —> MTA2(postfix) –>
MTA1 (actual mailserver) –> external MTA
unix server (mailx) –> MTA2(postfix) –> MTA1 (actual mailserver) –> external MTA
unix server (mailx) –> MTA2(postfix) –> external recipient MTA
unix server (mailx) –> MTA1 –> external recipient MTA
unix server (mailx) —> (localhost-sendmail) –> external recipient MTA directly ?

q1) Is all the above paths valid ? If so, what should be the correct way ?

q1) Notice 1), not sure why there is a sendmail listening on localhost when the MUA can go directly to MTA2 or MTA1 (like path2)

q2) Notice 2) not sure why the need for MTA2 to relay to MTA1 when they can go the 3) path

q3) Notice 3) not sure why the need to go to MTA2 when they can go to MTA1 also

q4) Notice 5) i have a strong feeling i can send to the sendmail on localhost and have it send to the external MTA directly.

So which is the right path ?

Continue reading simple question about smtp server ( msa to mta ) security design?→

Receiving unknown bounced mails

Posted on March 30, 2017 by IT researcher

I am getting some mails from Mailer-Daemon@s09.webhost1.ru recently which contains the following body

polimer.****@list.ru
(Generated from tm@polimer**.com)
SMTP error from remote mail server after end of data:
h… Continue reading Receiving unknown bounced mails→

Have i just accidentally invited a virus on my machine? [on hold]

Posted on March 24, 2017 by EVILGHO5T1

I was browsing through my emails on outlook.com, and then I noticed I had received an email from my “father.” Since I saw my fathers name I almost didn’t even look at the link and clicked it anyway, but I quickly realized how… Continue reading Have i just accidentally invited a virus on my machine? [on hold]→

Have i just accidentally invited a virus on my machine? [on hold]

Posted on March 24, 2017 by EVILGHO5T1