IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [email-spoofing]

Email spoofing refers to the process of sending fraudulent emails that appears to be from someone that it is not.

Email spoofing refers to the process of sending fraudulent emails that appear to be from someone that it is not.

Using common email protocols such as SMTP, headers such as the sender name and email address can be forged, since there are no restraints in the protocol to prevent this.

250 questions
24
votes
3 answers

Reply to potentially spoofed email

A colleague recieved an unsolicited email along the lines below: Dear Ms. Smith please click on the following link to recieve Document X regarding Project Y. Yours, Eve Nobody eve.nobody@company.com I suggested my colleague to reply to Eve…
Dohn Joe
  • 561
  • 4
  • 8
19
votes
2 answers

I received an "Undelivered Mail", is my email address used maliciously?

I received an "Undelivered Mail Returned to Sender" email, which is quite suspicious. The message is displayed in Thunderbird like this: From: someRandomStuff my.name@mail.provider Date: 24.08.20, 21:05 To: a list of very random looking email…
Dohn Joe
  • 561
  • 4
  • 8
4
votes
1 answer

Can you rule out the possibility that an email is spoofed despite passing SPF, DKIM, and DMARC?

Excuse my ignorance. I'm just a beginner trying to fill in the knowledge gaps that I have on how email system in general works, so this might seem a silly question to some or even all of you. Is there a possibility that an email comes from an…
Crito
  • 43
  • 5
2
votes
1 answer

How was I spoofed?

I am trying to figure out how we were spoofed for education purposes. The email came in perfectly with the user's email address and name. The only way we found out was the header information. Most spoofing I see, I can tell by looking at the from…
Bob Waxon
  • 23
  • 2
2
votes
1 answer

Is there any tool or method to detect spoofed CCs?

One of our phishing scenarios during a pentest went like this: we send an email saying something along the lines of "As per the manager (CCd) please download the latest software included". Then we attach the manager as CCd in the headers but never…
trallgorm
  • 885
  • 7
  • 22
2
votes
2 answers

Email header of an email sent from one email ID to the same email ID

The SPF and DKIM Signature fields are missing in the email header when an email is sent from one email ID to the same email ID. What is the reason for this?
Martin Godfrey
  • 35
  • 3
1
vote
2 answers

Received email at work from someone using a member's name

The email message looks like this. This person used a church member's name and used a totally different email address. It went like this: Hi! How are you? (then gives a bad web address) Gary Mecham Then, below that in the bottom left corner it…
DRgn83
  • 11
  • 2
1
vote
1 answer

How spf records prevents the server from attackers?

I have very little knowledge about spf records. I have Googled a little and found that spf records are used to prevent email spoofing. But I dont really understood how this works. I would like to know about the following things in brief. How to set…
Anonymous Platypus
  • 1,462
  • 3
  • 19
  • 38
1
vote
1 answer

Email sent to people with my name in the from section, but not my email address

I have had a couple emails sent to people who have sent me an email in the past (in my inbox, but who are not necessarily on my contact list). They have my full name in the from section, and in the email body, but the email address they are sent…
Susan
  • 11
  • 1
  • 1
  • 2
1
vote
0 answers

Please help me figure out my hack?

new here and a noob but need some help identifying some things I find very strange on my device. Anybody willing to try help figuring out some problems with me, your help will be greatly appreciated.
Marka
  • 11
  • 1
1
vote
1 answer

Emails with links offering job

I am a designer. I have received several emails offering jobs. There is a link. I never click to links in emails. I look at the sender address and look at google to see if it could exist a real firm with that name. Most of the time I see no company.…
Nrc
  • 1,153
  • 2
  • 7
  • 7
1
vote
1 answer

Possible Scam - reply address appears to be yours

Have received the following email which I believe to be a scam Internet Crime Complaint Center (IC3) In Partnership with: Swiss National Fraud Relief Center (NFRC) Case/Reference ID: IE3033900045 We regret to inform you that you have been a victim…
Richard Stafford
  • 11
  • 2
1
vote
1 answer

Can an attacker discover email addresses without gaining server access?

Present situation: I am receiving emails at a few of my email addresses, different domain names, all housed on the same server. The emails ares spoofed (appear to be coming from each of the email addresses), but looking at the headers, they are…
John
  • 13
  • 2
1
vote
1 answer

Does google have access to all information on a Protonmail android app?

Gmail reads my emails so Protonmail becomes more appealing to me. It is more secure, is open source and they do not read your emails or give away your information to third parties. But, Protonmail also has an android app. Now, if I install the app…
billyandriam
  • 111
  • 3
1
vote
0 answers

Receiving unknown bounced mails

I am getting some mails from Mailer-Daemon@s09.webhost1.ru recently which contains the following body polimer.****@list.ru (Generated from tm@polimer**.com) SMTP error from remote mail server after end of data: host mxs.mail.ru…
IT researcher
  • 143
  • 1
  • 4
1
2