Member-only story
Email Spoofing: How it happens and its Remediation
What is email Spoofing:
“FROM” header of email is flawed by design and it is very easy to acquire a mail server and send out the emails by spoofing the FROM address. This poses a significant threat to the organization because if a person is able to impersonate an organization then there might be possibility that the hacker can send phishing email to the users asking them to reset their password and then can steal theirs credentials. The email spoofing can lead to these things
- By using Social engineering like sending phishing emails, users credentials can be stolen
- They can route legit users towards malicious sites.
- They can spread malwares or ransomware in the form of attachments.
If legit user does not know how to inspect email’s headers like whether the email has passed from the checks such as SPF, DMARC, and DKIM he may get trapped into the phishing campaign. If the sender address has been spoofed there is no way for a organization to stop the email from being delivered. There are couple of ways users can take to identify the spoofed email.
