SPF - o365info

How to manage SPF record in an Office 365 based environment

Updated on March 3, 2023
E-mail Security, SPF
1 Comment

In the current article, we will review the subject of managing SPF record in an Office 365 based environment.The tasks that we will examine are: How to get the value of the SPF record that represents the Office 365 mail…

Implementing SPF Fail policy using Exchange Online rule (dealing with Spoof E-mail attack) | Phase 2 production | part 3#3

Updated on March 3, 2023
E-mail Security, SPF
4 Comments

The current article is the last article in the article series, in which we review how to implement SPF Fail policy using Exchange Online rule. Just a quick reminder, our main goal is to detect and prevent a possible event…

Implementing SPF Fail policy using Exchange Online rule (dealing with Spoof E-mail attack) | Phase 1 – learning mode | Part 2#3

Updated on March 4, 2023
E-mail Security, SPF
0 Comments

In the current article, we will review how to implement an SPF Policy for incoming mail by using an Exchange rule. In our scenario, we want to identify an event, in which a hostile element tries to execute a Spoof…

Using sender verification for identifying Spoof mail | SPF, DKIM, DMARC, Exchange and Exchange Online |Part 8#9

Updated on March 4, 2023
DKIM, DMARC, E-mail Security, SPF, Spoof E-mail
0 Comments

Spoof mail attack is implemented by a hostile element the try to spoof sender identity. The way for dealing with a Spoof mail attack is, by applying a procedure, which check and verify the sender identity (check if the sender…

How does sender verification work? (How we identify Spoof mail) | The five hero’s SPF, DKIM DMARC, Exchange and Exchange Online protection | Part 9#9

Updated on February 26, 2023
DKIM, DMARC, E-mail Security, SPF, Spoof E-mail
4 Comments

The process of “sender verification”, enables us to distinguish between a legitimate sender vs. an attacker who spoofs his identity and prevent a possible Spoof mail attack. In the current article, we will review in details three sender verification standard…

How to simulate Spoof E-mail attack and bypass SPF sender verification? | 2#2

Updated on March 4, 2023
E-mail Security, SPF
9 Comments

In the current article, we will demonstrate how to simulate Spoof E-mail attack, that will bypass existing SPF sender verification implementation. The current article series includes two articles.The previous article is – How can hostile element execute Spoof E-mail attack…

How can hostile element execute Spoof E-mail attack and bypass existing SPF implementation? | introduction | 1#2

Updated on March 3, 2023
E-mail Security, SPF
1 Comment

In the current article series, we will learn about a structured vulnerability of the SPF mail standard, which can be easily exploited by a hostile element. The hostile element that is aware of this SPF vulnerability, can bypass the existing…

Implementing SPF record | Part 8#17

Updated on March 3, 2023
E-mail Security, Internal spam E-mail, SPF
0 Comments

The current article is a continuation of the previous article: What is SPF record good for? | Part 7#17 The previous article focused upon the purpose of the SPF record and why is it so important for preventing a scenario,…

What is SPF record good for? | Part 7#17

Updated on January 3, 2023
E-mail Security, Internal spam E-mail, SPF
0 Comments

The current article focused on explaining the purpose of the SPF record and, how does the SPF record enable us to prevent a scenario in which hostile elements, could send E-mail on our behalf. The next article – Implementing SPF…