A researcher has found a way to impersonate Microsoft corporate email accounts, which could make phishing attacks harder to spot.

  • stringere@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    15
    ·
    6 months ago

    However to mitigate it as much as possible is what DMARC DNS entries are supposed to help with, by providing assurance that the email was sent by an SMTP server allowed to send email on behalf of the domain.

    +DKIM and SPF as long as we’re naming email authentication methods.