Solved

General Question about Phishing and Spoofing

Posted on 2013-06-12
3
338 Views
Last Modified: 2013-06-12
Can some one explain or direct me to a good link that explains Phishing and Spoofing, Are they the same thing.

I know what Phishing is, but the part I'm kinda of confused about is the way the emails comes in.
Yesterday we got emails from a Wells Fargo address like.. john@wells.fargo.com.   so it looks leiget from the address. But once we see the email we totally know its a Phishing email, but what i don't get is when we look this email up in our spam filter its shows the actual email that it came from and not john@wells.fargo.com.

Example, in our spam filter, it shows..   something like this.    fake@email.com as the actual sender and doesn't show john@wells.fargo.com.   How can some one do this, and is there a way to protect from this. And is this considered spoofing?

thanks for any help
0
Comment
Question by:sirichaiphumirat
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 52

Accepted Solution

by:
Manpreet SIngh Khatra earned 250 total points
ID: 39241728
Phishing Versus Spoofing
http://www.brighthub.com/internet/security-privacy/articles/66852.aspx

Phishing vs Spoofing
http://blogs.msdn.com/b/tzink/archive/2007/08/29/phishing-vs-spoofing.aspx

Phishing is the act of attempting to acquire information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication.

An example of a Spoofing tactic is to send an official looking e-mail which has a link inside that contains a virus. For example an e-mail could be sent from a greeting card service's e-mail address (spoofed), with a link that says 'Your friend sent you a gift card! Click here to see it!'. When clicked adware, malware, or a virus may be installed on your computer

- Rancy
0
 
LVL 43

Assisted Solution

by:Amit
Amit earned 250 total points
ID: 39242098
Now a days both are combined into one. Hacker might send you an email with a link, could be your bank site with fake email address/URL. So Fake email address is spoofing and URL given in that email is used for phishing.

To avoid from this situation, first avoid opening such emails, if you opened also avoid opening URL, if you opened URL check you have HTTPS in the Address bar, If you don't see https, just close the page.
0
 

Author Closing Comment

by:sirichaiphumirat
ID: 39242107
thanks everyone.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Phishing attempts can come in all forms, shapes and sizes. No matter how familiar you think you are with them, always remember to take extra precaution when opening an email with attachments or links.
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
how to add IIS SMTP to handle application/Scanner relays into office 365.

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question