AntiSpam

Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.

Share tech news, updates, or what's on your mind.

Sign up to Post

We have an office 365 tenant with about 20 some users, we have been receiving a lot of spam though our domain, among other things we recently setup and turned on DKIM. Since that time we did receive spam but interestingly we received phishing emails from the same domain name that we believed DKIM would block.
Do you know of any way to verify if DKim is working?
0
Amazon Web Services
LVL 12
Amazon Web Services

Are you thinking about creating an Amazon Web Services account for your business? Not sure where to start? In this course you’ll get an overview of the history of AWS and take a tour of their user interface.

My friend is using a service called SpamArrest to manage his unruly inbox. Any new senders will receive an email back from the server asking they pass a "capcha" type non-robot test. After that, they're whitelisted and may email freely.

He's moved to Office 365 and SpamArrest isn't compatible.

The goal is a robust email whitelisting cloud service that will work with O365 Exchange and Outlook Desktop Client. Do you know of a product that can meet this need?

Thank you,

John
0
Hi, im deploying Barracuda Cloud Spam, we have Exchange 2016 in house, i believe i have to allow certain IPs from Barracuda, where would i make this change?
0
Tough spam problem can't seem to isolate. Out of 20 users only one affected. Spam is not going through the spam filter incoming or outgoing. Has to be something on a local device infusing the spam into the users inbox. Nothing in sent either. Have removed the computer they work from in the office, disabled the NIC. Ran a malware scan on they're laptop and the ccleaner bug was found, see below for details regarding the CCleaner incident.

CCleaner v5.33 and CCleaner Cloud v1.07 Security Notification. Not sure if this is related.

Haven't run a scan on the users phone doing so now.

The bug is the same one identified here.
0
My  Outlook email is bouncing due to spam filter and it looks like it is coming from C:\Program Files (x86)\Microsoft Office\root\Office16  Any idea how to resolve this?
0
This utility will help to identify the hash value of the application, which will help to protect computers from the various attacks.
0
LVL 36

Expert Comment

by:Terry Woods
Comment Utility
It's worth noting, for those who aren't aware, that MD5 is a broken algorithm for security use. If there is a stronger alternative algorithm available to be used, it would be a good idea to use it.

Further reading:
https://www.zdnet.com/article/ssl-broken-hackers-create-rogue-ca-certificate-using-md5-collisions/
https://blog.avira.com/md5-the-broken-algorithm/
0
Hi,

We are running an out of warranty MacAfee appliance of secure email.
Now we are looking for a Cloud based solution that scans out email for virus / spam /adware and all other kind of nasty things that does not belong in our network.
We want to have a good control over the spam settings and release spam when there is a false positive to release the mail to the user.
We have 500 emails clients and likely, we are growing so looking for an enterprise solution.
What do you recommend or do you use for your email spam/virus solutions?
Many Thanks.
Harm
0
Hi Folks,

I'm new here. Glad to be a part of this prestigious group. Lately we're observing random spams with below header. Needed some help with improving 365 spam filtering for this case. Thanks, much appreciated.

SYXPR01MB1086.ausprd01.prod.outlook.com with HTTPS via
 SY3PR01CA0107.AUSPRD01.PROD.OUTLOOK.COM; Thu, 26 Jul 2018 00:03:00 +0000
Received: from ME2PR01CA0098.ausprd01.prod.outlook.com (2603:10c6:201:2c::14)
 by SYXPR01MB1088.ausprd01.prod.outlook.com (2603:10c6:0:a::17) with Microsoft
 SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.973.21; Thu, 26 Jul 2018 00:02:59 +0000
Received: from SY3AUS01FT011.eop-AUS01.prod.protection.outlook.com
 (2a01:111:f400:7eb5::200) by ME2PR01CA0098.outlook.office365.com
 (2603:10c6:201:2c::14) with Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.995.16 via Frontend
 Transport; Thu, 26 Jul 2018 00:02:59 +0000
Received: from shark4.inbox.lv (194.152.32.84) by
 SY3AUS01FT011.mail.protection.outlook.com (10.152.234.115) with Microsoft

 SMTP Server (version=TLS1_1, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256)
 id 15.20.995.12 via Frontend Transport; Thu, 26 Jul 2018 00:02:58 +0000
Received: by shark4.inbox.lv (Postfix, from userid 2004)      id 5DC7456544; Thu,
 26 Jul 2018 03:02:55 +0300 (EEST)
Received: from localhost (localhost [127.0.0.1])      by shark4-in.inbox.lv
 (Postfix) with ESMTP id 4A53656542      for …
0
Hello Experts

I would like to be able to talk and get some questions about the configuration of spam in MAILENABLE.
0
We have a Hybrid email environment and all the user mailbox has been created over office 365 and synced with local AD.

Off late after enabling a password notification email through Local AD we have been receiving loads of spams and phishing emails with the content more often then not being a password expiry or reset password notification.

Any idea if the new password expiry email set up would cause or what could be the prime reason for such emails getting triggered.

I guess there's a relation between how spammers identify the modification and then use similar content.

how coud we tackle such issues or any indepth knowledge on how these work could be a great topic for discussion.
1
Webinar: Miercom Evaluates Wi-Fi Security
Webinar: Miercom Evaluates Wi-Fi Security

It's not just about Wi-Fi connectivity anymore. A wireless security breach can cost your business large amounts of time, trouble, and expense. Plus, hear first-hand from Miercom how WatchGuard's Wi-Fi security stacks up against the competition in our upcoming webinar!

User believed that their computer was hacked, and some sort of malware was sending out messages.
They received several phone calls from friends who had gotten blank email messages.

I installed and ran Malwarebytes, which removed 717 components of Potentially Unwanted Programs. McAfee had been previously installed, but that protection didn't notice what Malwarebytes found and quarantined.

I noticed that there was something, possible an extension, that was added onto chrome.  I

Is there anything else that I should run?
What's a good way to check if emails are still being sent out?


Thanks.
0
Hello I have a user that contacts in their email account is being spammed by a fake email account with their name but not their email account, so I am thinking that if all of the people on the sent list is from this users email contacts and then it list them as the sender it must have something to do with their account?  How is this happening?
0
Hello,

We have a problem with an SMTP send farm. All public IP of the farm are blacklisted by Spamcop and we can't request a new delisting.

We are using an antispam filter for INcoming & OUTgoing mails. No mail can be send is a domain doesn't exist on our system. I download the list of sender contacted today & I tried to identify a problem on the list. But I found nothing suspect...

I think there is one (or many) mail adresses used by spamcop as "trap" to identify spam sender.

Have some advice to help me to solve this problem ?

Thanks.
0
Scrollout F1 is setup as a SPAM inbound gateway to an Exchange server.  We have some senders whos emails won't deliver to the Exchange server.  Thus far the emails have not kicked back.  The remote Exchange server is stating the message delivery has been delayed.  I am assuming Scrollout is terminating the connection from the remote mail server.  I did notice that the remote domain doesn't have an SPF record.  Would that be enough to cause this issue?  What can I do i Scrollout to mitigate the issue so we can receive their emails?  I don't see anything in the logs of the web interface that report any activity for the remote server domain.  Are there other logs on the Scrollout file system that I should be looking at?

Any help would be appreciated
0
Looking for a low cost spam filter in an exchange server.  I was wondering if I could use a Ubuntu VM on the Exchange box and if there were some built-in or open source spam solution that I could install on the Ubuntu VM to filter out the SPAM email before passing it along to the Exchange server.
0
This message is sent to me, from me and on behalf of me. Upon clicking the reply key I see the real sender. I have tried to options and add to the blocked list and also open the blocked content and unsubscribe them (meggannsmith6) to hopefully get them blocked by the actual company with the unsubscribe link.
This person is sending me multiple messages each day in two accounts and I changed the passwords and no luck.
What is the solution?
0
Hello all,
I have a client that has 50 POP3 email addresses for their 50 computers that is being hosted at web.com and using Outlook 2016 as the email program.
The issue is that one of the POP3 email addresses is suddenly receiving a number of porno spam emails.
The web.com spam filter is set to default and I really don't want to change this since the client is in the medical community so it might reject legitimate emails.
Is there a good spam filter program that we can test on the computer that has the POP3 account on it?
I do NOT want to change the MX record for the domain at all to the spam software company like some of the software wants you to.
Thanks,
Kelly W.
0
We will soon be starting a relationship with a company where we will be allowing them to send emails to our customers on our behalf from their mail provider using our domain name. They are using Amazon Ses, and they have asked us to add the amazonses.com domain as an allowed sender in our SPF record. We are going to do this, but I am a little uncomfortable with the risk of any potential Amazon cloud customer having the ability to spoof our domain and pass SPF. Because of this, I am looking into implementing DKIM and having the third party sign their messages with a private key.

I want to implement DKIM for our own domain's email messages as well. I have been reading up on DKIM, but it gets a little confusing when third party senders become involved. I am looking to see if anyone can provide me with a best practice for this situation.  If I create a private/public key pair for our domain, I am guessing that it is not recommended practice to provide that key to the third party and tell them to use the selector name I make up. I have come across different articles describing the use of multiple selectors, but I admit I am finding them confusing. Can I have two different private keys for the same domain? Then I could give them one private key for their emails and have a separate key for our emails? Do I use the same private key, but create two selectors for my domain? Then provide the third party with the private key and tell them to sign using the alternate selector? At that …
0
Dear Experts

Iam looking for good antivirus/anti spam and other protection software for the recently purchased dell latitude 3940 with windows 10 would like to subscribe for good one can you please suggest which one to go for, thanks in advance. mcafee total protection is slightly cheaper compared to mcafee business security please suggest.
0
Redefine Your Security with AI & Machine Learning
Redefine Your Security with AI & Machine Learning

The implications of AI and machine learning in cyber security are massive and constantly growing, creating both efficiencies and new challenges across the board. Check out our on-demand webinar to learn more about how AI can help your organization!

You have a secure Document from . Open message below

 click here.

Note; Your email and your password is required for authentication.

Can you please let me know how to block this message in o365 and what are the  preventive steps? Thanks.

Regards,


Note- please help me how to block - we have o365
0
I deleted an important folder and the spam folder. I empty the deleted mail folder. I restored both together in a new folder. Now I have few important messages (10.000) and a mass of spam together (54.000 ).

We have both kaspersky serverside anti spam and EOP. Both only works on recived Items. Is there a way to scan a folder marking spam items and moving them to spam folder?

I tested spambully but it crashes on training.
0
This question is for the Exchange Admins out there who have experience in dealing with phishing campaigns or malicious emails in general.

When a phishing campaign with malicious links and/or attachments hits your mail servers what are doing to figure out who clicked the links or attachments in said phishing email?

We are using Exchange 2013 CU19 On-Premise , Outlook 2013

Thank you for your time and knowledge!
0
Mailwasher Pro
Tutorial: In this part of my series, I'll be explaining how to set up an IMAP connection in Mailwasher and Outlook and also explain the differences of how Mailwasher handles POP and IMAP connections. Enjoy!
1

Expert Comment

by:Nick Bolton
Comment Utility
Excellent, I think a lot of users get stuck on the email settings parts and what they mean, so this guide makes that a lot clearer.
1
LVL 20

Author Comment

by:Andrew Leniart
Comment Utility
Thanks for your comments Nick and I'm glad you approve. I'm writing these articles so that people can learn to use the power of this tool and enjoy it's functionality just as I have been for so many years.

Regards, Andrew
0
I want to know about email spoof.
For example , I know that we can verify an email is spoofed or not by SPF.
But using anonymousemail.me ,we can know it is spoofed mail, but it goes into inbox.
Why it is not filter by spam-filter?
Thank you.
0
Mailwasher Pro
An explanation of How the Recycle Bin works and how to configure it so that it works for you just as you want. Enjoy!
1

Expert Comment

by:Nick Bolton
Comment Utility
Thanks again Andrew, you write so well!
1
LVL 20

Author Comment

by:Andrew Leniart
Comment Utility
Thank you very much for the kind compliment Nick!

If you would be so kind as to endorse the article by clicking the thumbs up at the bottom of the article, (to the left of the word comment) I'd very much appreciate it :)

Part-4 of the series is almost written and will be published soon!

Best regards,

Andrew
0

AntiSpam

Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.