Skip to main content

What is domain spoofing and how does it impact my organisation?

By May 11, 2021January 25th, 2022cybersecurity
DMARC Blog Post banner

Cybercriminals are impersonating the email addresses of unsuspecting organisations to conduct malicious and illicit activities. Organisations that fall victim to impersonation or “domain spoofing” as it’s better known, can often suffer significant reputational damage and financial loss as result.

With increasing regulation and insurance companies keen to protect their interests, it could leave impersonated organisations answering questions. Many organisations are leaving themselves open to exploitation and should implement modern measures to help protect themselves.

How does Welltel help you protect your organisation from "Domain Spoofing"?

DMARC is a free and open technical specification that is growing in popularity. DMARC is designed to make it difficult for cybercriminals to impersonate domain names and email addresses.  Every organisation should implement DMARC as part of its cyber protection safeguards. DMARC is relatively straight forward to implement for most organisations.

DMARC POLICY graphic e1620829056412

How does DMARC work?

When a third party receives an email from what appears to be from your organisations email address, their email system will be able to check the header of the email and compare it with DMARC related settings associated with your domain name.  This will help their email and spam protection systems determine if emails received are legitimate or impersonated.

Domain spoofing is often used by criminals to carry out the following.

• Instigate money transfers from vulnerable employees via spoofed emails while impersonating senior executives in your company.

• Send fake invoices to your suppliers and partners.

• Deal in illegal goods via your domain name.

• Spread Ransomware

• Impersonate customer support to steal confidential customer or partner information.

Leave a Reply