Show Actual Email Address to expose phishing
Idea shared by kevind - 2/27/2023 at 7:27 PM
Wouldn't it make sense to display both the friendly name and the actual email address in the message header?

Scammers are great at sending fake emails with friendly names that look like they're from your local bank, the store you shop at, your ISP, etc.

So instead of displaying:
From Bank of America

Need to display:
From: Bank of America <bank-phish1234@gmail.com>

So people can recognize it as fake.
Also suggest adding a colon after 'From' or making it bold for better reading

3 Replies

Reply to Thread
Gabriele Maoret - Head of SysAdmins at SERSIS
Currently manages 3 SmarterMail installations (1 in cloud for SERSIS which provides service to a few hundreds 3rd party Mail Domains + 2 on premise to customers)
Matt Petty Replied
Employee Post
We noticed this ourselves last week. We should have better behavior in our next release. We'll only hide the email for contacts in your list or in the gal and we've confirmed that it passed DMARC or was Authenticated (sent locally), Only in those cases in the future will we hide the email address. We'll see how that does for now.

We saw some sketchy emails and it tipped us off that we needed something better. Thanks for the feedback.
Matt Petty
Software Developer
SmarterTools Inc.
(877) 357-6278
Resolved. Build 8496 (Apr 6, 2023) shows the full address for senders not in Contact list.

Reply to Thread