On 2017-01-03 17:29, Suzy Ariyani wrote: > di tahun yg baru kami dikejutkan oleh buyer di perush kami mengalami > pemalsuan Invoice atas nama ptbmi.com > dimana email dari marketing kita dipalsu dgn NAMA sama tetapi email yg > digunakan berbeda (phising mail) > account bank yg tertera dalam invoice tsb. diganti dan dikirim ulang dg > alamat email *@dr.com <mailto:*@dr.com>.
Itu spear phising https://en.wikipedia.org/wiki/Phishing#Spear_phishing |-- mulai kutipan --> Spear phishing Phishing attempts directed at specific individuals or companies have been termed spear phishing.[8] Attackers may gather personal information about their target to increase their probability of success. This technique is, by far, the most successful on the internet today, accounting for 91% of attacks.[9] <-- akhir kutipan --| ini info yang lain https://archives.fbi.gov/archives/news/stories/2009/april/spearphishing_040109 |-- mulai kutipan --> How spear phishing works. First, criminals need some inside information on their targets to convince them the e-mails are legitimate. They often obtain it by hacking into an organization’s computer network (which is what happened in the above case) or sometimes by combing through other websites, blogs, and social networking sites. Then, they send e-mails that look like the real thing to targeted victims, offering all sorts of urgent and legitimate-sounding explanations as to why they need your personal data. Finally, the victims are asked to click on a link inside the e-mail that takes them to a phony but realistic-looking website, where they are asked to provide passwords, account numbers, user IDs, access codes, PINs, etc. <-- akhir kutipan --| Untuk mencegah itulah fitur "From Header Modification" dibuatkan di MDaemon, khususnya untuk user yang menggunakan Microsoft Outlook Family yang bawaan instalasinya tidak memperlihat email address sender, hanya terlihat "Real Name atau Display Name" yang mudah di palsu. Melengkapi Account Hijack Detection dan Strong Password yang diindikasi oleh FBI merupakan awal terjadinya Spear Phising. http://mdaemon.dutaint.co.id/mdaemon/16.5/index.html?security--hijack_detection.htm |-- mulai kutipan --> This security feature modifies the "From:" header of incoming messages to cause the name-only portion of the header to contain both the name and email address. This is done to combat a common tactic used in spam and attacks where the message is made to appear to be coming from someone else. When displaying a list of messages, email clients commonly display only the sender's name rather than the name and email address. To see the email address, the recipient must first open the message or take some other action, such as right-click the entry, hover over the name, or the like. For this reason attackers commonly construct an email so that a legitimate person or company name appears in the visible portion of the "From:" header while an illegitimate email address is hidden. For example, a message's actual "From:" header might be, "Honest Bank and Trust" <[email protected]>, but your client might display only "Honest Bank and Trust" as the sender. This feature changes the visible portion of the header to display both parts, with the email address given first. In the above example the sender would now appear as "[email protected] -- Honest Bank and Trust," giving you a clear indication that the message is fraudulent. <-- akhir kutipan --| beberapa member milis ini pernah melaporkan kejadian serupa tahun lalu, tetapi tidak sampai terjadi transaksi karena transfer dana melalui bank tidak bisa dilakukan kalau nama penerima dana (corporate bank account name) tidak sama dengan nomer corporate bank account number (pengaman dari Bank). -- syafril ------- Syafril Hermansyah MDaemon-L Moderators, MDaemon 16.5.2-64, SP 5.1.0-64 Beta B Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. Learning without thought is labor lost; thought without learning is perilous. --- Confucius (551 BC - 479 BC), The Confucian Analects -- --MDaemon-L---------------------------------------------------------- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke [email protected] Versi terakhir MD 16.5.2, SP 5.0.1, OC 4.0.1, SG 4.0.1
