How To Block/Filter Phishing Messages
Question asked by Scott Forsythe - 3/17/2020 at 9:32 AM
Unanswered
In the last week or so we have been getting more phishing messages. Messages that are spoofing Wells Fargo, Bank Of America, Microsoft, etc.

Does anyone a a favorite technique, service, etc. to block these messages? Cyren, SpamAssassin? Thanks!

3 Replies

Reply to Thread
0
Kyle Kerst Replied
Employee Post
Scott, the best way to prevent these types of attacks is to follow our recommended antispam settings. SPF/RDNS/DKIM/DMARC will all help cut back on the amount of phishing messages received by your end users as the SmarterMail instance will be capable of verifying the from domains. Our recommended settings can be found here:

Kyle Kerst
Technical Support Specialist
SmarterTools Inc.
(877) 357-6278
www.smartertools.com
2
Scott Forsythe Replied
Hi Kyle,

Thanks for the reply and information.

We have SPF, DKIM and DMARC setup for our domain. Most phishing messages come from external domains though. For example, domains of popular organizations are changed slightly to fool the end user.

I noticed in the "Recommended SPAM Settings" article it mentions Remote SpamAssassin but not SpamAssassin-Based Pattern Matching. Both SA settings are under Antispam - Spam Checks. We would be interested in recommendations for SpamAssassin-Based Pattern Matching.
0
echoDreamz Replied
Cyren is nearly useless. We receive quite a few large number of complaints saying they flag legit messages as suspect or even confirmed when they are not. Sniffer does a decent job, but also doesnt seem to respond well to non-English spam...

Reply to Thread