Cisco Cisco Email Security Appliance X1050 Weißbuch
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
Page 1 of 22
White Paper
Forged Email: Detect Spoofing with Cisco Email
Security
Security
What You Will Learn
Forged email is email that uses a forged sender address. It’s meant to fool the
recipient about who sent the message.
recipient about who sent the message.
Forging, or “spoofing,” email is easy to do. It can be done from within a LAN or from
an external environment using Trojans. Forged email is often used in spam and
phishing campaigns.
an external environment using Trojans. Forged email is often used in spam and
phishing campaigns.
This paper focuses on the resolution of spoofs that come from outside an organization
when a sender impersonates an employee. The attacker’s purpose is to deceive the
employees in order to steal money or information. We will discuss four variants of this
attack and propose solutions using Cisco
when a sender impersonates an employee. The attacker’s purpose is to deceive the
employees in order to steal money or information. We will discuss four variants of this
attack and propose solutions using Cisco
®
Email Security running AsyncOS 9.7.1.