My friend is using a service called SpamArrest to manage his unruly inbox. Any new senders will receive an email back from the server asking they pass a "capcha" type non-robot test. After that, they're whitelisted and may email freely.

He's moved to Office 365 and SpamArrest isn't compatible.

The goal is a robust email whitelisting cloud service that will work with O365 Exchange and Outlook Desktop Client. Do you know of a product that can meet this need?

Thank you,

John

Tough spam problem can't seem to isolate. Out of 20 users only one affected. Spam is not going through the spam filter incoming or outgoing. Has to be something on a local device infusing the spam into the users inbox. Nothing in sent either. Have removed the computer they work from in the office, disabled the NIC. Ran a malware scan on they're laptop and the ccleaner bug was found, see below for details regarding the CCleaner incident.

CCleaner v5.33 and CCleaner Cloud v1.07 Security Notification. Not sure if this is related.

Haven't run a scan on the users phone doing so now.

The bug is the same one identified here.

Hi Folks,

I'm new here. Glad to be a part of this prestigious group. Lately we're observing random spams with below header. Needed some help with improving 365 spam filtering for this case. Thanks, much appreciated.

SYXPR01MB1086.ausprd01.prod.outlook.com with HTTPS via
 SY3PR01CA0107.AUSPRD01.PROD.OUTLOOK.COM; Thu, 26 Jul 2018 00:03:00 +0000
Received: from ME2PR01CA0098.ausprd01.prod.outlook.com (2603:10c6:201:2c::14)
 by SYXPR01MB1088.ausprd01.prod.outlook.com (2603:10c6:0:a::17) with Microsoft
 SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.973.21; Thu, 26 Jul 2018 00:02:59 +0000
Received: from SY3AUS01FT011.eop-AUS01.prod.protection.outlook.com
 (2a01:111:f400:7eb5::200) by ME2PR01CA0098.outlook.office365.com
 (2603:10c6:201:2c::14) with Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.995.16 via Frontend
 Transport; Thu, 26 Jul 2018 00:02:59 +0000
Received: from shark4.inbox.lv (194.152.32.84) by
 SY3AUS01FT011.mail.protection.outlook.com (10.152.234.115) with Microsoft
 SMTP Server (version=TLS1_1, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256)
 id 15.20.995.12 via Frontend Transport; Thu, 26 Jul 2018 00:02:58 +0000
Received: by shark4.inbox.lv (Postfix, from userid 2004)      id 5DC7456544; Thu,
 26 Jul 2018 03:02:55 +0300 (EEST)
Received: from localhost (localhost [127.0.0.1])      by shark4-in.inbox.lv
 (Postfix) with ESMTP id 4A53656542      for …

We have a Hybrid email environment and all the user mailbox has been created over office 365 and synced with local AD.

Off late after enabling a password notification email through Local AD we have been receiving loads of spams and phishing emails with the content more often then not being a password expiry or reset password notification.

Any idea if the new password expiry email set up would cause or what could be the prime reason for such emails getting triggered.

I guess there's a relation between how spammers identify the modification and then use similar content.

how coud we tackle such issues or any indepth knowledge on how these work could be a great topic for discussion.

User believed that their computer was hacked, and some sort of malware was sending out messages.
They received several phone calls from friends who had gotten blank email messages.

I installed and ran Malwarebytes, which removed 717 components of Potentially Unwanted Programs. McAfee had been previously installed, but that protection didn't notice what Malwarebytes found and quarantined.

I noticed that there was something, possible an extension, that was added onto chrome.  I

Is there anything else that I should run?
What's a good way to check if emails are still being sent out?


Thanks.

Hello,

We have a problem with an SMTP send farm. All public IP of the farm are blacklisted by Spamcop and we can't request a new delisting.

We are using an antispam filter for INcoming & OUTgoing mails. No mail can be send is a domain doesn't exist on our system. I download the list of sender contacted today & I tried to identify a problem on the list. But I found nothing suspect...

I think there is one (or many) mail adresses used by spamcop as "trap" to identify spam sender.

Have some advice to help me to solve this problem ?

Thanks.

Looking for a low cost spam filter in an exchange server.  I was wondering if I could use a Ubuntu VM on the Exchange box and if there were some built-in or open source spam solution that I could install on the Ubuntu VM to filter out the SPAM email before passing it along to the Exchange server.

Hello all,
I have a client that has 50 POP3 email addresses for their 50 computers that is being hosted at web.com and using Outlook 2016 as the email program.
The issue is that one of the POP3 email addresses is suddenly receiving a number of porno spam emails.
The web.com spam filter is set to default and I really don't want to change this since the client is in the medical community so it might reject legitimate emails.
Is there a good spam filter program that we can test on the computer that has the POP3 account on it?
I do NOT want to change the MX record for the domain at all to the spam software company like some of the software wants you to.
Thanks,
Kelly W.

Dear Experts

Iam looking for good antivirus/anti spam and other protection software for the recently purchased dell latitude 3940 with windows 10 would like to subscribe for good one can you please suggest which one to go for, thanks in advance. mcafee total protection is slightly cheaper compared to mcafee business security please suggest.

You have a secure Document from . Open message below

 click here.

Note; Your email and your password is required for authentication.

Can you please let me know how to block this message in o365 and what are the  preventive steps? Thanks.

Regards,


Note- please help me how to block - we have o365

This question is for the Exchange Admins out there who have experience in dealing with phishing campaigns or malicious emails in general.

When a phishing campaign with malicious links and/or attachments hits your mail servers what are doing to figure out who clicked the links or attachments in said phishing email?

We are using Exchange 2013 CU19 On-Premise , Outlook 2013

Thank you for your time and knowledge!

I want to know about email spoof.
For example , I know that we can verify an email is spoofed or not by SPF.
But using anonymousemail.me ,we can know it is spoofed mail, but it goes into inbox.
Why it is not filter by spam-filter?
Thank you.