#WeekendWisdom 058 Preventing Email Spoofing
Welcome to #WeekendWisdom number 58. This week we’re going to talk about preventing email spoofing.
What is email spoofing?
Did you know it is very simple for the bad guys to be able to send email and make it look like it’s coming from your company. This is what we mean by email spoofing. And there are steps that you can take that will prevent that from occurring and prevent the bad guys from ruining your email reputation.
You will need to get your IT person or your web person to make these changes and they’re made on your internet domain. The internet domain in my case is L2CyberSecurity.com. They need to add these records. There’s three records that need to be added and
The first one is the SPF record or Sender Policy Framework. What the SPF record does is it tells the email receiver to check what email server sent that email to them to make sure that it came from the correct server.
The second item is the DKIM record, which stands for DomainKeys Identified Mail. What that does is it adds a digital signature to your outgoing email. Which again the receiving email server can check and see if it’s the correct signature that’s been attached by your mail server.
The final item is the DMARC record, which stands for Domain-based Message Authentication, Reporting and Conformance. What that does is it tells the receiving email what it should do if any email is received that fails the SPF or the DKIM checks and that can be the mail can be delivered, it can be quarantined or it can be rejected.
Adding those three records to your domain would make your email almost impossible to spoof.
So that’s it for this week. Let’s be careful out there and we’ll talk to you again next week.
How can L2 Cyber Security help you?
We offer a full range of training programmes, which can be delivered online or in-person*.
L2 Cyber Security are also a partner of CyberRiskAware for online self-directed Cyber Security Awareness training and Phishing testing.
Contact us for more information at info@L2CyberSecurity.com.
*With appropriate social distancing and other health and safety measures adhered to.
Follow us on Social media:
Liam is available on Twitter, LinkedIn and Instagram.
Follow L2 Cyber on Twitter, LinkedIn, Instagram and Facebook.