Home Forums How did I get a phishing e-mail from intel.com?

This topic contains 1 reply, has 2 voices, and was last updated by  darth_vadester 1 month, 2 weeks ago.

  • Author
    Posts
  • #457316

    florilsk
    Member

    I don’t understand, where do you just go and get an email with <randomstring>@intel.com?

    Most phishing e-mails I get are really obvious but lately been getting from ea and intel as domains in my main inbox and I can’t understand how (the why is probably the twitch leak tbh).

  • #457317

    darth_vadester

    Email addresses can be spoofed, so you can make it look like it came from any domain.

  • #457318

    SophisticatedPasta

    As a domain owner you can mitigate some of this spoofing by setting up a DMARC record on your domain. This will instruct the receiving email servers to for instance reject email or put it in spam if it fails DKIM or SPF.

    As a user receiving the emails you could check the mail headers to see if the email passed DKIM for instance, which would mean the sender is authorized to send email from that domain.

  • #457319

    Agitated-Farmer-4082

    U can fake emails and send someone emails from any domain, its abusing the windows telnet stuff

  • #457320

    Epynomous

    Do you have the headers? What e-mailclient/hosting do you use?

    It is trivial to spoof an e-mail, but pretty much any spam filter stops that. They might have found a more creative way.

    Something clever I’ve seen a while back, was a LinkedIn invitation. The message contained a phishing link and the profile was the name of a familiar person, or something like IT support. So you received malicious content from a site with a good reputation and a mail with a nice layout.

    A poorly configured contact form is also a good one. They type a malicious message in an online contact form, enter your mail, and you’ll receive an auto response from a trusted site with the malicious message, confirming they received your message. Depending on the autoresponse, it might not be very obvious something like that happened.

  • #457321

    chillsone

    I think protonmail provides custom @ name if youre paid user

You must be logged in to reply to this topic.