Differences

This shows you the differences between two versions of the page.

--- public:emai:malware [2021-10-21 13:49] – vesely
+++ public:emai:malware [2021-11-19 08:13] – [Suspicious content (HTML links, docs)] vesely
@@ Line 62: / Line 62: @@
 **Malicious use of spoofing**  - Phishing and business email compromise scams generally involve an element of email spoofing. Email spoofing has been responsible for public incidents with serious business and financial consequences.
-Example of spoof email:
+**Example of spoof email:**
 MAIL FROM: **johndoe2<font inherit/inherit;;#2980b9;;inherit>@gmail.com</font>** \\
@@ Line 68: / Line 68: @@
 To: **jane.dow<font inherit/inherit;;#d35400;;inherit>@cerge-ei.cz</font>**
-Such email is suspicious. Some user with an account at Gmail (johndoe2@gmail.com) set his profile to use institutional email address (john.doe@cerge-ei.cz) but it is not sent via cerge-ei.cz email server but via google server.
+Such email is suspicious. Some user with an account at Gmail (johndoe2@gmail.com) set his profile to use institutional email address (john.doe@cerge-ei.cz). \\
+Problem is that such email is not sent (hence authorised) by cerge-ei.cz email server but it is sent by some third party server(google server in this case).
 ===== SPF =====
@@ Line 217: / Line 218: @@
 ===== Suspicious =====
-==== Suspicious content (HTML links, docs) ====
+==== Suspicious content (HTML links, docs, macro) ====
 //Added subject tag: **[Suspicious]** //