Quick reminder to make sure your org email gateway is correctly configured. I've come across countless email gateways that are misconfigured, turning them essentially useless.

If your org is using any sort of secure email gateway for email filtering, it is very common for organizations to apply domain-based safelisting for inbound mail (ie when dealing with partners or external child organizations), and whilst domain-based safelisting is already not recommended at all, very often I see orgs safelisting emails "containing" domain.com.

This is a terrible practice since anybody could register dddomain.com, 1domain.com, idomain.com, etc, bypass your very expensive email gateway in just a second and email your entire user base without any email filtering.

If you must safelist an entire domain, make sure you are safelisting something like "Sender Address ends in @domain.com or .domain.com", (if safelisting subdomains), as well as having additional anti-spoofing and domain reputation rules in place to detect any potentially forged emails.

#BEC #email #emailgateways

📬 Phishing: neue Angriffs-Methode kombiniert Fax und Captcha #OnlineBetrug #Avanan #CAPTCHA #EMailGateways #JeremyFuchs #Phishing https://tarnkappe.info/artikel/online-betrug/phishing-neue-angriffs-methode-kombiniert-fax-und-captcha-218680.html

Google Services Weaponized to Bypass Security in Phishing, BEC Campaigns - Attackers exploiting an array of Google Services, including Forms, Firebase, Docs and more to boos... https://threatpost.com/google-services-weaponized-to-bypass-security-in-phishing-bec-campaigns/161467/ #businessemailcompromise #socialengineering #googleservices #microsoftteams #cloudsecurity #emailgateways #emailsecurity #cyberattacks #websecurity #googleforms #becattacks #googledocs #armorblox #firebase #bypass