Questions tagged [phishing]
38 questions
1
vote
0 answers
Postfix - External incoming mails with company domain
We use postfix as internal and external relay and Exchange inside the organization. Our company is receiving a lot of SPAM and phising mails whose Sender is our own company domain.
Searching Exchange Message-trackingLog I realized that altough the…
![](../../users/profiles/506414.webp)
Maximiliano
- 11
- 1
1
vote
2 answers
reporting abuse of phishing site (email not monitored)
The following server is phishing our university site:
http://webmailadm-unipi-it-src-login-php.mywap.lt/main.php?z=1
Looking into WHOIS database I find a contact email (which coincides with registrar email). I send an email and the response…
![](../../users/profiles/219831.webp)
Emanuele Paolini
- 161
- 5
1
vote
1 answer
Mailscanner: how to block html attachments only
I have a Mailscanner site and I want to deny all html attachments but permit html emails.
AFAIK there is difference between html attachments and html mail: Content-Disposition: attachment;
I tried to configure Filetype Rules =…
![](../../users/profiles/333994.webp)
sgargel
- 190
- 1
- 15
1
vote
1 answer
WP in docker container hacked - Server sends Phishing mails - disable container from other OS with the server volume mounted?
Wordpress that has not been updated in a docker container on a vServer has probably been hacked since the provider notified me about the server sending phishing mails and deactivated my machine.
Now they let me run a rescue linux from where I can…
![](../../users/profiles/342576.webp)
haemse
- 181
- 1
- 2
- 9
1
vote
2 answers
My website was used by a freak hacker as a phishing site! What can I do?
My website was taken down a day back - got a message form the host saying that they recieved a complaint from the Bank of America that my website was being used for phishing customers. I managed to bring my site online and found a number of weird…
![](../../users/profiles/7467.webp)
Ali
- 279
- 1
- 3
- 14
1
vote
2 answers
Quick/safe way to mass delete SPAM messages from 100+ inboxes
Looking for a way to delete all messages from particular senders out of every affected users mailbox, typically 100-200/10,000. When I approached our Exchange admins about this idea I was met with resistance, told it was slow (Takes 4-5 hours to…
![](../../users/profiles/228684.webp)
user228684
- 11
- 3
1
vote
1 answer
IP reported for mail phishing
I got a report from my root server provider of abuse - someone has been sending phishing mail through my server's Postfix (the headers originate from my server's IP). What should I check for? The server itself doesn't seem to be hacked.
![](../../users/profiles/79703.webp)
Kornel Kisielewicz
- 193
- 6
1
vote
1 answer
Microsoft hosts domains that redirect to mine. Is there an innocuous explanation?
Facebook alerted me that some SSL certificates have been issued that potentially phish one of our domains:
The detailed view for one of these entries is as follows:
When I access one of these domains, it forwards to our actual domain.
There are…
![](../../users/profiles/113436.webp)
rinogo
- 329
- 4
- 13
0
votes
1 answer
Managing MSP Tenants for Anti-Phishing Controls
I'm trying to find a simple way to report on our tenants' settings regarding Microsoft's recently introduced Anti-Phishing controls.
If possible, I'm looking to find an easy GUI method to report on these, with any management considered a very happy…
0
votes
1 answer
Prevent intruders to send emails from myself (Postfix)
recently we have been victim of a simple phishing.
Yet simple but it can be scary for some users, I don't know how to block this.
The intruder connects via telnet to our mail server and sends phishing emails from a local address to the same address.…
![](../../users/profiles/439892.webp)
Diogo Jesus
- 131
- 7
0
votes
1 answer
SPF and DMARC protection
Today while working at my company, we saw allot of automatic reply emails coming into one of our group inboxes (i.e. info@company.com). We suspect that this email address is being used in a phishing campaign and the automatic replies were from…
![](../../users/profiles/325367.webp)
user92592
- 125
- 5
0
votes
0 answers
Inbound & outbound emails marked as phishing
We look after multiple Office 365 tenants for hosted Exchange email.
One tenant in particular has an issue where a lot of inbound and outbound emails are marked as phishing.
The domain passes all DNS checks under the Admin console, and I can't find…
![](../../users/profiles/184366.webp)
Ash
- 448
- 2
- 9
- 31
0
votes
0 answers
Someone has put phishing files on my server
Recently i found some phishing files (PHP/HTML) on my server which were previously not present. I deleted them but later another set of files reappeared.
This is happening for all the sites hosted on my server even after changing the admin panel and…
0
votes
3 answers
Recover from server phishing hijack
My server was compromised last year and a phishing site was uploaded. It was detected and removed within a few days. A year later I'm still getting huge volumes of traffic to the dodgy url on my server http://myipaddress/www.bankofamerica.com/…
James
0
votes
1 answer
Investigating a phishing complaint
UPDATE: Seems it was a fake email, so not really that urgent, but the questions are still valid.
So I received an email about a VPS I host (I'm a VPS hosting company, this is a customer VPS) being used for phishing sites, on both IPs for the VPS,…
![](../../users/profiles/73998.webp)
Joshua D'Alton
- 428
- 2
- 13