Tag: Mail
Spear Phishing: Is Your Boss a Whale?
Spear and whale phishing 1have been around for a while now, but recent social engineering efforts are focusing more on company executives. An example is this type of email: it certainly looks legit at first glance; even the phone number and address – right down to the floor number – are correct. But take a closer look at the URL used in the links: the real site has no relation to puzzlejs-mailing.com. (Jul 29, 2010)
Privacy vs. Data Leakage: What’s More Important to You?
In an earlier post, I discussed why your business needs Policy Management and the different causes of Data Leakage. In today’s post, I will take a closer look at one of the causes of data leakage protection and how it can be prevented: let’s look at the case of the Disgruntled Employee. (Jul 08, 2010)
Honest, I don’t want an email security appliance!
Vendors have their own very special reasons for pushing email security appliances, instead of virtual machines or straight software installations. You may find that their reasons do not always align with your own. (Jun 14, 2010)
Here come the spam police
The German courts may have just opened the floodgates. Their top criminal court ruled this week that home wireless users can be held responsible for not password-protecting their wireless connections. If the unprotected connection is used for illegal file downloads, the owner can be fined up to 100 Euros (currently $126). (May 17, 2010)
Most Common Support Issue: Whitelist = Spoofed Spam
No one likes to see spam in their Inbox, especially when it comes from themselves! Users often get confused and even worry that their identity has been stolen. The main cause for this is that they have whitelisted their own email address to bypass scanning for outbound traffic. Users do not realize (or understand) that spammers can spoof their email address and send spam that appears to be from themselves. (May 14, 2010)
Think you don’t spam? Think again!
Who has never sent email spam? Maybe you wanted to promote something, contact friends or relatives you never really emailed before (at least with a normal email), send a chain letter that promised success and money or to promote a garage sale using your local hockey team email list? Maybe you sent a message for your business using a large contact list grabbed on a corporate email with a multitude of CC’d addresses? Or did you ‘borrow’ the customer list from work for your own use? (Oh, that’s bad!) (May 05, 2010)
(Un)subscribe me
Hundreds of emails get blocked daily by your spam filters, but sometimes one slips through. You look it over and it appears to be very legitimate. You don’t remember clicking ‘Yes’ to subscribe to this newsletter, but you see the classic, “You are receiving this because you subscribed to one of our partners… blah, blah, blah… and this is an excuse for us to send you spam. Yeah, it’s true: XYZ company is one of our partners, we do their mass mailing and we grabbed your address at the same time!” So, now you’re tempted to click the Unsubscribe button, but how can you tell if it’s legit? And how do you know that clicking unsubscribe won’t tell the spammer, “Hey I’m alive and I actually read what you sent - send me more”? (Mar 17, 2010)
Less Linux, more Windows
I’ve always been a pro-Linux type of guy. I started using Unix back in 1992 (SunOS) and then onto Slackware, Red Hat, Ubuntu. Linux offered so many more features, security, power to do anything and a reliability Windows couldn’t dream of at the time. Linux was a true multitasking OS, had a firewall, and all internet clients and servers one may want or need: pop3, smtp, http, ftp, ssh. All these were virtually impossible to do on MS-DOS or Windows, and I’m not even talking about the various crashes and ridiculous uptimes of the early Microsoft platforms. Since then, and up until a few months ago, it’s always been clear to me: reliability and security on Linux; office work, graphical user interface and leisure on Windows. (Feb 05, 2010)
How would you punish a spammer?
“Last time out I suggested sentencing spammers to some quality time in a maximum security cell with an ex-biker named "Tiny." But I think that's too good for these people. They should be strung up by their thumbs and forced to watch ShamWow infomercials and Rick Astley videos until their ears bleed.” Robert Cringely, InfoWorld 1 (Feb 03, 2010)
What is a Honeypot in Email Security Terms?
A Honeypot is, by definition, a decoy or a trap whose purpose is to detect and identify unauthorized use in order to prevent breaches. In Email Security, a Honeypot is a SMTP server setup to process a single domain (or multiple domains) to gather emails all day long. (Dec 18, 2009)
