There are many types of email threats that exist and have for many years.  Beyond the potential of malicious emails creating security problems in your environment like ransomware, they can also have a significant impact on your company’s brand and integrity.

One type of email threat that can impact your company brand and image is email spoofing.  Spoofing is when the sender email address imitates a valid sender within your company.  There are a few technologies you can implement in your organization to help reduce this type of threat:

  1. Sender Policy Framework (SPF) can be used to authorize specific sender systems for your email domain.   This is typically an easy configuration setup.
  2. Domain Key Identified Mail (DKIM) can used in combination with SPF or as a stand-alone to take the authorization of sending systems a step further.  DKIM uses encryption key signatures on every email to ensure that the message was not only sent from an authorized server, but also that it was not tampered with during transit.
  3. Domain-based Message Authentication, Reporting and Conformance (DMARC) builds on top of the combination of SPF and DKIM.  Using both the SPF and DKIM foundations, DMARC also validates some additional settings based on the email sender properties.  If there are any non-authorized senders or anything suspicious occurring, an IT Administrator will receive reports of these activities.

A recipient email system needs to have controls in place to utilize these solutions.  Your email systems should be configured with one of these solutions for any emails you receive.  This will help prevent your email system from receiving any more spoofed emails.

Other Email Threats

Beyond the technologies to protect your email brand there are many solutions and settings that can be implemented to prevent malicious messages from ever being sent or received from your email system.  Many of these you may already own, but do not have configured or could use additional set-up.

These include your SPAM filters, Malware Filters, and IP connection filters.  If you are using Office 365 you already have these built in.  However, the settings may need adjustments to make them more effective.  There is an additional product in Office 365 that can be purchased called Advanced Threat Protection.  Advanced Threat Protection (ATP) can be advantageous in protecting against malicious file attachments or web site links.

We can help you to protect your email brand and email systems.  To learn more contact one of our IT Advisors at info@peters.com or 630.832.0075.

Also be sure to check out our Ransomware blog series and sign up for our Ransomware Series Review webinar in April 2017.