Mar 22

Technical Insights,Industry Insights

What is domain spoofing and how does it impact my organisation?

Cyber criminals are impersonating the email addresses of unsuspecting organisations to conduct malicious and illicit activities.

Organisations that fall victim to impersonation or “domain spoofing” as its better known, can often suffer significant reputational damage and financial loss as result.

With increasing regulation and insurance companies keen to protect their interests, it could leave impersonated organisations answering questions.

Many organisations are leaving themselves open to exploitation and should implement modern measures to help protect themselves.

DKIM to help protect your organisation from domain spoofing
How does Novi help you protect your organisation from "Domain Spoofing"?

DMARC is a free and open technical specification which is growing in popularity. DMARC is designed to make it difficult for cyber criminals to impersonate domain names and email addresses.  Every organisation should implement DMARC as part of their cyber protection safeguards. DMARC is relatively straight forward to implement for most organisations.

Contact Novi to implement DMARC for your organisation today
How does DMARC work?

When a third party receives an email from what appears to be from your organisations email address, their email system will be able to check the header of the email and compare it with DMARC related settings associated with your domain name.  This will help their email and spam protection systems determine if emails received are legitimate or impersonated.  

Domain spoofing is often used by criminals to carry out the following.

• Instigate money transfers from vulnerable employees via spoofed emails while impersonating senior executives in your company.

• Send fake invoices to your suppliers and partners.

• Deal in illegal goods via your domain name.

• Spread Ransomware

• Impersonate customer support to steal confidential customer or partner information.

Contact Novi to implement DMARC for your organisation today

Contact a cyber security advisor