What is Spoofing?
Email spoofing is when you receive an email from someone with a forged sender address, as if they were someone else The MAIL FROM will represent the details of the person the sender is pretending to be, rather than who they actually are. Obviously, this activity is typically malicious.
So why would anyone want to spoof an email address?
Spoofers tend to be criminal in intent. They might be sending links; trying to get people to download malware, they may be asking for personal or bank details, or sending out instructions from a source you would normally trust in the hopes you follow them. Inevitably, this leads to you sharing information or performing tasks you would not normally do, leaving you open to theft of data, or money.
In a recent example of Spoofing, a falsified email from ‘The Boss’ instructed a company to transfer thousands of dollars out of company accounts. In this instance of course, the email wasn’t really from The Boss, but was Spoofed. You can read more about this here.
How do they get your address in the first place? Why choose you?
It is very easy to end up on a spoofing list, and there are many ways it can happen. You may have unwittingly clicked on a malware email at some time, leaving you open to data hacking which may allow the Spoofer access to your email going forwards. You could have been part of a large group cc’d into an email where one of the other email addresses had a scraper in it (software that gathers all email addresses it can find and adds it to a list). This in turn has a knock on effect, and spoof emails may be sent out from you to all the people in your address book and so on. Spoofing is very rarely a personal attack, is generally anonymous and can be detected at either personal or business accounts.
Why is it that sometimes you receive more spoofing emails than usual?
Much like viruses, e-mail spoofing and general phishing scams are a war of attrition between the spoofers and the mail protection companies with each trying to better the other. At times the reason it seems you are receiving more spoof e-mails than at others is exactly what it seems, the spoofers have found a way round mail security and have focused on sending more e-mails and, in turn, the email protection companies update, respond and close the security loophole. Other times it can simply be that a contact has had their e-mail account breached and your e-mail address has been identified from their address book, as you are likely to be on the address books of others also identified this way you may find an increase in the number of e-mails received. The thing to remember is these types of attacks are always happening, it is just you don’t see it because your protection is working or sometimes you have simply been lucky enough not to have your e-mail address appear on a compromised list.
Can spoofing be stopped? How do you protect yourself?
• You can help protect yourself from Spoofing and other forms of malicious spam by following the simple steps below:
• Use an industry leading and recognised anti-spam/e-mail protection solution. These solutions are continually updated and whilst they do not provide a fool proof solution they are the best first line of defence. Workplace Live uses 2 of the top world brands for this – Message Labs and Barracuda.
• Turn on/up your spam filters on your e-mail client. This can help to ensure that the spoof email lands in your junk rather than inbox (however this might also block wanted emails).
• Don’t click on unexpected links and advise your staff about the possibility of spoofing. Forewarned is forearmed!
• Don’t download unfamiliar attachments. If you’re unsure, contact the person you believe the email is from (but don’t just click reply! Call them or send them a new email)
• Check emails addresses against domain names to ensure they match – if not, approach with caution.
• Above all, be vigilant – the most complex protection platform available to you is your brain, it can spot subtleties that can be missed by technology but only if it is switched on to the dangers.