We have a customer who is on a local ISP's email & when they clicked on a "spoofed"
email, their inbox got erased.
This customer is not using our MTA (MS Exchange) : they simply tag onto their ISP's
All I can say is:
a) see if their ISP have a backup of their emails to restore
b) not to click on attachments when in doubt (but this email looks rather genuine
& was purportedly from us though the originating IP is from North America,
not our country
c) for gmail, if we set an email as "Spam", does gmail moves it to Spam box based
on the email sender, subject or originating IP ? I find email sender & subject are
easily spoofed/impersonated but not originating IP. I'm not sure if the ISP
Singnet offers what kind of spam filtering
d) change their email password to a complex password?? Is this effective?
e) what kind of malware/malicious attachment is known to erase Inbox (I suppose
if it's Outlook they're using, their .ost or .pst got erased). Is there any good
AV for emails (I mean for MUA, not MTA as MTA is hosted in their ISP)
Is there any product they can buy to install on their PCs or MUA (Message
User Agent such as webmail or Thunderbird) to safeguard them? High-end
products like Proofpoint for MTA & setting up their own MTA is beyond their
Anything else to advise the customer? It's a Small & Medium Enterprise who
took loans from us but our Customer Service & Mgmt does not want us to
leave the customer in the lurk though we are not obliged to help them.
I think the customer does not have an IT support people or department