Differences

This shows you the differences between two versions of the page.

--- public:emai:malware [2023-03-09 09:42] – vesely
+++ public:emai:malware [2023-03-09 12:12] – vesely
@@ Line 14: / Line 14: @@
 Both areas of malicious or potentially problematic emails and regular emails are overlapping; it is not easy to distinguish between them sometimes.
+<font inherit/inherit;;#f39c12;;inherit>**Both areas**</font>  of
+ <font inherit/inherit;;#c0392b;;inherit>**malicious or potentially problematic emails**</font>  and
+ <font inherit/inherit;;#339933;;inherit>**regular emails**</font>  ** <font inherit/inherit;;#f39c12;;inherit>are overlapping</font> **; it is not easy to distinguish between them sometimes.
 **The most dangerous threats are usually those of the "zero day attack" nature**; they usually take advantage of badly protected or misprotected email servers and domains so they can mimic the regular sender.\\
@@ Line 43: / Line 48: @@
   * [[:public:emai:malware#bad_dmarc|Bad DMARC]] -
  <font inherit/inherit;;#f39c12;;inherit>[Bad DMARC]</font>  - the sender's domain does not have DMARC record and SPF set properly.
-  * [[:public:emai:malware#bad_dmarc|Bad ARC]] -
+  * [[:public:emai:malware#arc|Bad ARC]] -
  <font inherit/inherit;;#f39c12;;inherit>[Suspicious - bad ARC]</font>  - the sender's email has ARC Seal but it's validation did not succed (e.g. invalid calculated email hash).
   * [[:public:emai:malware#ip_reputation_database_-_dnsbl|DNSBL listed]] -