Category Archives: phishing

Email Security: Learn how to hunt phishing/spam emails?

Threat Hunting Through Email Headers

DKIM: Everything You Need to Know About Digital Signatures

Understanding SPF, DKIM and DMARC

Put simply, SPF, DKIM and DMARC are ways to authenticate your mail server and to prove to ISPs, mail services and other receiving mail servers that senders are truly authorized to send email. When properly set up, all three prove that the sender is legitimate, that their identity has not been compromised and that they’re not sending email on behalf of someone else.

These antispam measures are becoming increasingly important, and will one day be required by all mail services and servers. ISPs and mail services, such as Gmail and Office 365, are getting more and more stringent in the types of email they’ll accept, so having all three checks configured ensures that email gets delivered and isn’t rejected outright or otherwise delayed.

https://www.smartertools.com/blog/2019/04/09-understanding-spf-dkim-dmarc

Phishing – Email Header Analysis

Abstract

Email Headers hold a lot of information. Much of this information is never displayed to the user. The email reader only sees a select few pieces of information like the subject, date, and the sender’s email and info. The surprising part is that the information that is actually displayed to a user can be easily forged!

Read more in..https://mlhale.github.io/nebraska-gencyber-modules/phishing/email-headeranalysis/

Email & Email Headers Checking Tools:

To Analyze Email Headers, User Google Apps https://toolbox.googleapps.com/apps/messageheader/

This Email Checker Tests The Validity & Reachability Of An Email Address https://network-tools.com/email-tests/

Advertisement

5 tips to avoid spear-phishing attacks

Abstract

Phishing, very briefly defined, is where a cybercriminal tricks you into revealing something electronically that you ought to have kept to yourself. The good news is that most of us have learned to spot obvious phishing attacks these days.

The bad news is that you can’t reliably spot phishing attacks just by watching out for obvious mistakes, or by relying on the crooks saying “Dear Customer” rather than using your name.

Read more in

CyberSecurity: How one click could make your life miserable?

Here is the story of Delaine Maria D’Costa a blogger happens to be a victim of a phishing attack (i.e clicked on the unknown link). A phishing attack is a way to fool the user and ask to login to dummy site as same as the original site. like facebook.com but hackers would use dummy one. Read the full story here.

https://www.grahamcluley.com/when-your-instagram-account-has-been-hacked-how-do-you-get-it-back/

After reading the above story, It reminds me that in festival season, There are thousands of services like indian-choice.com etc would be circulated in every WhatsApp group. When you click on it, it says Happy Diwali <Sender Name>. here is the snapshot. We received such links from many friends & WhatsApp groups. 

After seeing such links, I decided to evaluate these things. And found that purpose of these services is not bad but to generate some money through advertisement. And some users personal information. Hard to know though what are the things they track for. apart from unknow trackings, These services have many security issues running on simple HTTP. And, pretty hackable.

Screen Shot 2018-11-11 at 10.12.49 PM

From a user perspective, it is new & interesting to wish someone. But the problem is what if someone trying to trick you. What if someone has bad intention. Is there a way these services stop it? Not really.

Most of the links are accessed by the phone. Once you click on it, it could simply download the executable file in your phone. And, the person who clicks will not know or guess what this file for and How does it effect. So, most of us could ignore and busy seeing flashing page or in hurry to forward the same to others.

A downloaded file could be a potential malware (i.e bad piece of software) which could access all your information like contact no, emails, messages etc. In general, people don’t bother much if someone has access to my message but what if someone can read your OTP messages and all information your chat, talk etc are available to someone. That is pretty scary isn’t?

On click that’s all, someone needs to ruin or make your life miserable.

Takeaway

Aware yourself and think what you are accessing and consuming. Be a good consumer of information. Open or access the service which you know or coming from a trusted source. Not every information is free. One click could cost you your entire saving & hard earned money. Cyberworld is pretty open & almost free with lots of services however nothing comes free as such. Everybody is trying to make money here.

For more suggestion & stories, Post a comment or you can contact me directly.