The IoT market is growing at a rapid pace and manufacturers are under pressure to quickly provide new products. Can you be sure that your devices do what they're supposed to do, while still being secure?
Course Of The Month
Become a Premium Member and unlock a new, free course in leading technologies each month.
AntiSpam
4K
Solutions
6K
Contributors
Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.
Share tech news, updates, or what's on your mind.
Hi
We are looking for a email filtering solution and have been speaking to mimecast and proofpoint (enterprise version with TAP). Having had sales style demos both products look very similar so wanted so real world guidance.
We currently have 365 for email with EOP and it is doing a very poor job of filter spam, virus attachments and protecting against targeted phishing (fake CEO)
We are looking for a email filtering solution and have been speaking to mimecast and proofpoint (enterprise version with TAP). Having had sales style demos both products look very similar so wanted so real world guidance.
We currently have 365 for email with EOP and it is doing a very poor job of filter spam, virus attachments and protecting against targeted phishing (fake CEO)
4 Comments
"Prohibits the DOD from using software platforms developed by Kaspersky Lab due to
reports that the Moscow-based company might be vulnerable to Russian government
influence."
https://www.armed-services.senate.gov/imo/media/doc/FY18%20NDAA%20summary2.pdf
https://www.bleepingcomputer.com/news/government/senate-gets-ready-to-ban-kaspersky-products-as-fbi-interviews-companys-us-employees/
reports that the Moscow-based company might be vulnerable to Russian government
influence."
https://www.armed-services.senate.gov/imo/media/doc/FY18%20NDAA%20summary2.pdf
https://www.bleepingcomputer.com/news/government/senate-gets-ready-to-ban-kaspersky-products-as-fbi-interviews-companys-us-employees/
Goverment says you can't sue someone for spamming. Could be a step in the wrong direction.
http://www.cbc.ca/news/politics/spam-computers-law-trudeau-1.4179066
http://www.cbc.ca/news/politics/spam-computers-law-trudeau-1.4179066
User was tricked at home, he took the whole bait and hook, paid $ to a fake Microsoft person and allowed them on his computer. Anyway after running some tools and removing malicious malware he still has on his desktop a fake phone number that shows on his Task bar area. This is a Vista O.S. how do I remove?
I will be reformatting the computer in a couple week.
I will be reformatting the computer in a couple week.
Hello,
I am doing some testing of spam filtering solutions. Is there a service that will just send you spam to an email address? Thanks.
I am doing some testing of spam filtering solutions. Is there a service that will just send you spam to an email address? Thanks.
We have a Barracuda spam/Firewall 300 here that's got about 30,000 blocked/deferred messages in the outbound queue that I need to get deleted. I can't even bring up the outbound queue in queue management. I spent over an hour with Support and they cant connect with the guy couldn't figure out how to connect with it....that's a different issue. How can I clear these out? Its killing our mail throughput?? I know its got SSH but I can't connect to it. I'm not local to the system but I've got full admin rights. I cant even pull the export out of it.
I manage a small network (84 users) We currently have a Barracuda Email Security 300 that is getting a bit long in the tooth and is in need of replacement. So, with that said I am looking at Fortimail (Because we have a Fortigate 200D) and Barracuda Essentials for Email Security.
I do know that in terms of price that Barracuda solution is cheaper but I hate having to evaluate based on price (But that's what the higher Up's see) Has anyone used the Fortimail solution? is it more or less the same compared to the Barracuda solution? I do think both offer "sandboxing" and that is something I am interested in..
I do know that in terms of price that Barracuda solution is cheaper but I hate having to evaluate based on price (But that's what the higher Up's see) Has anyone used the Fortimail solution? is it more or less the same compared to the Barracuda solution? I do think both offer "sandboxing" and that is something I am interested in..
Old tricks still work - $1.9m email -
https://nakedsecurity.sophos.com/2017/06/13/news-in-brief-update-flash-now-heartbleed-fine-the-1-9m-email/
https://nakedsecurity.sophos.com/2017/06/13/news-in-brief-update-flash-now-heartbleed-fine-the-1-9m-email/
A recent post by Brian Matis motivated me to make this alternate post to see what sort of reaction others might have about these recent revelations.
A recent article on The Verge claims that "The older operating system was less vulnerable that anyone expected"
Windows XP computers were mostly immune to WannaCry
Another article from the same source claims "Windows XP was ‘insignificant,’ researchers say" with regards to helping the WannaCry outbreak spread.
"Almost all WannaCry victims were running Windows 7"
Lots of folks (from their perspective) with a genuine need to keep running on Windows XP suffered a lot of grief in Tech forums as being one of the root causes of giving WannaCry a platform to spread and thrive from, yet now it appears all the criticism may have been a little premature and unjustified.
For the record, I personally don't condone anyone using unsupported operating systems and actively encourage everyone I deal with to get themselves up to date, but I am also sympathetic to those who feel they have a genuine need to do that, so also think they shouldn't be …
A recent article on The Verge claims that "The older operating system was less vulnerable that anyone expected"
Windows XP computers were mostly immune to WannaCry
Another article from the same source claims "Windows XP was ‘insignificant,’ researchers say" with regards to helping the WannaCry outbreak spread.
"Almost all WannaCry victims were running Windows 7"
Lots of folks (from their perspective) with a genuine need to keep running on Windows XP suffered a lot of grief in Tech forums as being one of the root causes of giving WannaCry a platform to spread and thrive from, yet now it appears all the criticism may have been a little premature and unjustified.
For the record, I personally don't condone anyone using unsupported operating systems and actively encourage everyone I deal with to get themselves up to date, but I am also sympathetic to those who feel they have a genuine need to do that, so also think they shouldn't be …
Active today
We have too many XP computers at my institution (some with only SP2) - mostly due to budgets and instrumentation.
Active today
Hi Thomas,
Have you considered purchasing an XP Updates agreement with Microsoft? Might be an easier solution if budget restraints prevent you from upgrading? I wouldn't feel comfortable with a lot of XP machines in an environment as it would be a case of when, not if, it will come back to bite you. Patches are available, just at a cost.
Incidentally, SP3 for XP is still provided by Microsoft - why not install it?
Steps to take before you install Windows XP Service Pack 3
How to obtain Windows XP Service Pack 3 (SP3)
Cheers..
Have you considered purchasing an XP Updates agreement with Microsoft? Might be an easier solution if budget restraints prevent you from upgrading? I wouldn't feel comfortable with a lot of XP machines in an environment as it would be a case of when, not if, it will come back to bite you. Patches are available, just at a cost.
Incidentally, SP3 for XP is still provided by Microsoft - why not install it?
Steps to take before you install Windows XP Service Pack 3
How to obtain Windows XP Service Pack 3 (SP3)
Cheers..
Dear Experts,
My clients and I tried to send emails to proofpoint customers but they get deferred or delayed.
I have done a blacklist check and our IP address is not blacklisted.
Is there anyway to contact proofpoint and inform them about this and get it resolved?
My clients and I tried to send emails to proofpoint customers but they get deferred or delayed.
I have done a blacklist check and our IP address is not blacklisted.
Is there anyway to contact proofpoint and inform them about this and get it resolved?
What, When and Where - Security Threats from Q1
Join Corey Nachreiner, CTO, and Marc Laliberte, Information Security Threat Analyst, on July 26th as they explore their key findings from the first quarter of 2017.
Hello,
Looking for suggestions for the best anti-spam solution (software, not hardware)
Currently using Spamexperts, but still receive 5-8 spam messages per week, perhaps this is the best possible without blocking valid / clean messages?
I am looking for a hosted solution.
Thank you,
Looking for suggestions for the best anti-spam solution (software, not hardware)
Currently using Spamexperts, but still receive 5-8 spam messages per week, perhaps this is the best possible without blocking valid / clean messages?
I am looking for a hosted solution.
Thank you,
Hi,
Any good free anti virus software that i can download and install on my window 10 laptop?
any good reliable dependable ones for free. please advise
Any good free anti virus software that i can download and install on my window 10 laptop?
any good reliable dependable ones for free. please advise
An introduction to the wonderful sport of Scam Baiting. Learn how to help fight scammers by beating them at their own game. This great pass time helps the world, while providing an endless source of entertainment. Enjoy!
Andrew. I am a Nigerian. The situation you highlighted is truly deep. The average street boys over here (14yrs and above) especially in my area search for money through these means. They even have clicks to receive scamming training.
In my experience, I would advise guys over there not to be greedy (especially when they receive juicy invitations to make ridiculously huge money you didn't earn). I truly wish people would wise up and not fall for such scams. Because the success of some scammers deceives the younger ones into choosing to become scammers. (I already have over 7 on my street alone.
In my experience, I would advise guys over there not to be greedy (especially when they receive juicy invitations to make ridiculously huge money you didn't earn). I truly wish people would wise up and not fall for such scams. Because the success of some scammers deceives the younger ones into choosing to become scammers. (I already have over 7 on my street alone.
Active today
Andrew. I am a Nigerian. The situation you highlighted is truly deep.Hi Timothy, whilst it's true that a lot of the scams I'm talking about originate from Nigeria, hence the "419" reference, which I understand was derived from the Nigerian Criminal Code Act-Part VI and are prolific there, it's not only Nigerians that partake in this sort of criminal practice.
Indeed, many scams are conducted from countries from all over the world.. USA, Great Britain, Australia, pretty much anywhere. It's not just 419 scams either - scammers have turned to every imaginable way to try and trick people out of their hard earned cash.
You have your Love Scams, where scammers target the lonely. Tech Scams (found to be prolific in Indian regions) where they try and pretend to be Microsoft Technicians. Just about every subject matter from every country imaginable!
The Race of a scammer doesn't come into it for me - just because someone may be Nigerian or Indian or whatever, it doesn't mean they're dishonest. Thieves come from all walks of life.
In my experience, I would advise guys over there not to be greedy (especially when they receive juicy invitations to make ridiculously huge money you didn't earn). I truly wish people would wise up and not fall for such scams.You make an excellent point there Timothy. Not all victims are blameless and there is undoubtably greed involved on some of those that fall prey to many of these schemes. Each case should therefore be viewed on its own individual merits. It is also a reason why many victims prefer to suffer in silence rather than report their losses to the authorities.
Thank you for your contribution to this topic. Always great to hear and explore other points of view.
Hi All,
Could I ask for your recommendations please. I am having lots of problems with loads of spam at the moment on my server. I used to run AVG on the server but still my clients had far too much spam getting through. Can you suggest what is best. I only have a small network of 10 clients and 1 server and limited budget. Have been attempting to get BitDefender but their customer service is poor at the moment as I have been awaiting a call back for 2 weeks after several chase ups.
Have tried using the spam setting within my Windows setup but changing the setting makes little difference.
Many thanks
Could I ask for your recommendations please. I am having lots of problems with loads of spam at the moment on my server. I used to run AVG on the server but still my clients had far too much spam getting through. Can you suggest what is best. I only have a small network of 10 clients and 1 server and limited budget. Have been attempting to get BitDefender but their customer service is poor at the moment as I have been awaiting a call back for 2 weeks after several chase ups.
Have tried using the spam setting within my Windows setup but changing the setting makes little difference.
Many thanks
Hi Guys,
We recently acquired the Antispam (CASS2.0) for SonicWall TZ400.
The feature has been installed and configured, but not yet enabled.
I just need some basic understanding and information from someone re the TZ400 Antispam feature.
1. Our mail does not currently spool via the TZ400 router, it comes via another gateway. I gather that we have to change our MX to route mail via the TZ400 for the antispam feature to work?
2. Once mail packets pass via the SonicWall router, will the TZ400 pick up the mail traffic from the NAT rule for port 25 automatically?
3. We will be using the current gateway as secondary MX (fail-over). Any other suggestions regarding the config and first hand experience?
We recently acquired the Antispam (CASS2.0) for SonicWall TZ400.
The feature has been installed and configured, but not yet enabled.
I just need some basic understanding and information from someone re the TZ400 Antispam feature.
1. Our mail does not currently spool via the TZ400 router, it comes via another gateway. I gather that we have to change our MX to route mail via the TZ400 for the antispam feature to work?
2. Once mail packets pass via the SonicWall router, will the TZ400 pick up the mail traffic from the NAT rule for port 25 automatically?
3. We will be using the current gateway as secondary MX (fail-over). Any other suggestions regarding the config and first hand experience?
I am at wit's end with something that I cannon understand is happening.
My boss signed -up for a newsletter from a website called "fisherynation.com". This news sites send several email out per day and they will not go into my bosses Outlook 2016 Inbox but rather to the Junk-Email folder. Here are the steps I have taken:
- In Junk Email Options, set to "No Automatic Filtering"
- Added fisherynation.com domain to "Safe Senders List"
- In Outlook Web Access (OWA) under setting for "Block or Allow" is set this to: "Don't move email to my Junk Email Folder"
- In Exchange Administration, Mail Flow.. I created a "Bypass spam filtering" for the sender of the emails in question.
Noe of this works! This particular sender of email is the "one and on;y" emails to go into his Junk Email folder. nothing at all besides.
Maybe this is a bug in Outlook 2016? Any ideas anyone?
Sincerely,
Steve
My boss signed -up for a newsletter from a website called "fisherynation.com". This news sites send several email out per day and they will not go into my bosses Outlook 2016 Inbox but rather to the Junk-Email folder. Here are the steps I have taken:
- In Junk Email Options, set to "No Automatic Filtering"
- Added fisherynation.com domain to "Safe Senders List"
- In Outlook Web Access (OWA) under setting for "Block or Allow" is set this to: "Don't move email to my Junk Email Folder"
- In Exchange Administration, Mail Flow.. I created a "Bypass spam filtering" for the sender of the emails in question.
Noe of this works! This particular sender of email is the "one and on;y" emails to go into his Junk Email folder. nothing at all besides.
Maybe this is a bug in Outlook 2016? Any ideas anyone?
Sincerely,
Steve
Trying to create an send connector to first send e-mail to our spam filter service.
Here is the configuration:
Type=Internet
Address Space: Type=SMPT, Address=*, Cost=1
Network: Route mail through the following host: Smart Host: NA0100.SMTPOUT.COM
Source Server: equal our server.
All outbound mail is being delivered, but it is not reaching the spam filter site. Their technical support thinks it is the fault of the Send Connector and they are lacking in Exchange expertise.
Inbound works great and I would like the added benefits of the outbound for this customer, especially since they are a sensitive site.
Thank you for your assistance.
Here is the configuration:
Type=Internet
Address Space: Type=SMPT, Address=*, Cost=1
Network: Route mail through the following host: Smart Host: NA0100.SMTPOUT.COM
Source Server: equal our server.
All outbound mail is being delivered, but it is not reaching the spam filter site. Their technical support thinks it is the fault of the Send Connector and they are lacking in Exchange expertise.
Inbound works great and I would like the added benefits of the outbound for this customer, especially since they are a sensitive site.
Thank you for your assistance.
Hi, I have a justspam.org issue. Our WP web server has been compromised and has been infected with a spam-sending virus. We have cleaned the infection but we got to many spamlists including justspam.org. The problem is, that we have never used this server (IP) as a mail server and we are using google services (not only) for emailing. We have made actions to block any smtp traffic from or to our web server. But that aslo means that we are not able to send de-listing email from our IP. This is a "catch 22 situation" when we are not able to send mail from that ip but the justpam.org server still keeps record that we used to spam and some of our customers' mail servers deny our mails as spam because they check our domain IP which ends on this IP... . How to get out of that? Is the only way to start webserver on that IP and send delisting mail? I would really hate to do that...
Hi Experts,
is it possible to activate the antispam filter in EXCH2013 ?
How to check if its activated ?
is it possible to activate the antispam filter in EXCH2013 ?
How to check if its activated ?
Free Tool: SSL Checker
Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.
One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.
Hi, we are deploying our own Exchange Mail server but do not have budget for Email security devices, such as Dell Sonicwall or Barracuda. How can anyone please suggest the best AV software (license) for Exchange Mail server? we did some research and found out some options like Kaspersky , Avast , ESET, AVG but have not decided yet. Thank you.
Dear Experts
I have been told by few that even if we have good list that is opted in contacts if we use email marketing tool like mail chimp, campaign monitor etc and engage with customers about our new product offerings still the mail will deliver to spam. I am not accepting this but they say such mails will either go to spam or they go to promotional emails category. please suggest is this how it works. thanks in advance
I have been told by few that even if we have good list that is opted in contacts if we use email marketing tool like mail chimp, campaign monitor etc and engage with customers about our new product offerings still the mail will deliver to spam. I am not accepting this but they say such mails will either go to spam or they go to promotional emails category. please suggest is this how it works. thanks in advance
Currently our Proofpoint can take from a few minutes to 3 hours before it detects new
emails containing certain attachments & links (ie new threats) are 'malicious' or spam.
To claw back malicious emails 2-3 hours later is rather late. Wud rather have late delivery.
Our Bluecoat MAA that protects against malicious downloading (or malicious sites) can
take up to several minute : just encountered one case yesterday where malicious .eot
files were downloaded by several users before it blocked users from downloading.
This Bluecoat MAA is supposed to protect against 0-day and unknown threats as well
but we have got quite a few infections/downloads in the past: possibly its 'sandboxing'
is not real-time / fast enough.
I'm hesistant to deploy endpoint IPS (HIPS) on workstations at this moment so skip
this for the time being as HIPS can impact legit services/apps if not tested thoroughly
while network based tools like MAA (& Trendmicro Discovery) are less disruptive.
Besides educating users (which we have done quite a lot), I'm looking for sandboxing
products that could perform much faster : I read one academic article that products
that implement 'prefetching' using multi layer of caches are much faster. If they use
SSD, wud it be faster?
In particular against ransomware as one highly successful one as extracted below:
Sky News Technology Correspondent Tom Cheshire described the attack as "unprecedented". The ransomware appears to use NSA 0-day …
emails containing certain attachments & links (ie new threats) are 'malicious' or spam.
To claw back malicious emails 2-3 hours later is rather late. Wud rather have late delivery.
Our Bluecoat MAA that protects against malicious downloading (or malicious sites) can
take up to several minute : just encountered one case yesterday where malicious .eot
files were downloaded by several users before it blocked users from downloading.
This Bluecoat MAA is supposed to protect against 0-day and unknown threats as well
but we have got quite a few infections/downloads in the past: possibly its 'sandboxing'
is not real-time / fast enough.
I'm hesistant to deploy endpoint IPS (HIPS) on workstations at this moment so skip
this for the time being as HIPS can impact legit services/apps if not tested thoroughly
while network based tools like MAA (& Trendmicro Discovery) are less disruptive.
Besides educating users (which we have done quite a lot), I'm looking for sandboxing
products that could perform much faster : I read one academic article that products
that implement 'prefetching' using multi layer of caches are much faster. If they use
SSD, wud it be faster?
In particular against ransomware as one highly successful one as extracted below:
Sky News Technology Correspondent Tom Cheshire described the attack as "unprecedented". The ransomware appears to use NSA 0-day …
I was told that Malware bytes works with Norton and wouldn't be a redundant package to install on my pc.
I'm looking for second, third and fourth opinions.
I'm looking for second, third and fourth opinions.
Like millions of others, I wake up to view many spam messages on my devices. I dislike it immensely. Is there a string or are there strings of words and phrases that I can use without trying to come up with all of them myself that I can exclude? For example, I NEVER want to see any email or sms that contains: "you have been selected" or "congratulations" or "important new breakthrough" or "blue pill". You get the idea. I don't mind creating rejection rules but I would like to start with one creation session that would catch a large percentage of crap and bury it before I even see it. I don't want to get so deep into this quest that I subscribe to any email forwarding service. I will also add, in case it gives anyone some ideas, that I have my own domain and can add and delete any number of emails I wish. I have learned that (obviously) since a questionnaire or sales inquiry indicates "we will not share this data with anyone" is pure @%#$^!%$. Miffed. I use Outlook on my PCs.
AntiSpam
4K
Solutions
6K
Contributors
Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.
Top Experts In
AntiSpam
-
1
jhyiesla2,000 points -
2
Ernie Werezak2,000 points -
3
Adam Brown500 points -
4
MB Shaikh500 points -
5
Stuart Hargreaves500 points -
6
Ken Bagnall500 points -
7
Dr. Klahn332 points -
8
masnrock332 points
-
9
Ben Personick (Previously QCubed)332 points -
10
Craig Kehler332 points -
11
Lucas Bishop332 points -
12
David Favor332 points -
13
Andrew Leniart175 points -
14
Tom Price38 points
-
15
Dermot Smyth27 points -
16
FutureTechSysDOTcom11 points
-
17
Cobra258 points