In my organisation, everybody with a malicious mailserver can spoof an internal email address. Eg. Spoof the From: and From address: to [email protected] – the email gets delivered without getting into spam. I said that to an admin and he said that this is an feature because we have lots of services using this to send emails on behalf of our domain. We are using Exchange Online and some on-premises servers. In your eyes – is this a big security concern ? If yes, what would you say to that admin and what needs to be implemented to prevent this ?

Share This Discussion

Leave a Comment

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.