Dear Experts,
My client has regular pop3 email boxes from Godaddy, which recently have been spoofed. Basically, someone is sending emails using their email addresses requesting payments or loans. I changed their passwords, scanned their machines, and am pretty sure these emails are not coming from my clients' PCs. After I spoke to Godaddy, they recommended I switch to Office 365 email boxes because of encryption.
What I am skeptical about is, if all they are using is the email addresses that they know exist, how does encryption of the email stop this type of spoofing? It feels as though someone just saw my name on the website, and decided to use that name to register for something.
Unless my name itself is encrypted, I cannot stop that person from impersonating me, so why does encrypted email stop spoofing?
Please advise.
GoDaddy has installed security key verification like DKIM or other on their Office365 and this key is compared to their DNS. SO no one can duplicate settings and send emails from different server pretending is coming from GoDaddy.
This settings can only be implemented on ActiveSynch servers and can;t on old pop3 servers.
I think in your case someone just duplicated your pop3 settings and modified his header to looks like legit email from pop server from Godaddy.
That's why email it looks like legit.
If you going to move to ActiveSynch server you'll be safe