Spoofed Email Messages
What is Email Spoofing?
Email spoofing is when a message appears to be sent from someone you know, but is actually sent by a hacker. Some of the most common spoofing emails come from an important person you know asking you to perform some financial transaction for them. These transactions can include:
- Changing banking information
- Buying gift cards
- Sending checks
Spoofing is very easy to do and almost impossible to prevent. It is as simple as placing a false return address on an envelope when you send something via the U.S Postal Service. In that example, the letter would appear to be coming from the return address printed on the envelope. When someone spoofs an email address, it is often the case that the account remains secure. However, a user may begin to see undeliverable messages and unusual messages in their inbox due to the fact that it is their address that the hackers are routing messages to.
Your vigilance in identifying suspicious messages is the most effective protection against these types of attacks. One thing you can look for is a difference between the known sending address and the Reply To address in message. Visit duq.edu/phishing to learn more about identifying characteristics of phishing and spoofing emails.
If you believe you have received a suspicious message or you experience any suspicious activity with your email account, please contact the CTS Help Desk at 412-396-4357 or email us at firstname.lastname@example.org.