Published on:

October 16, 2018

Email spoofing is when the sender of an email typically spam/forges/spoofs the email header "From" an address so the email being sent appears to have been sent from a legitimate email address that is not the spammers own address.

Reasons scammers do this:

  • To trick spam filters into allowing the email through by using a reputable email address. This way scammers can ensure their email goes to yours, friends or family member’s inboxes rather than their spam folder.
  • To prevent the bounce back emails from being received in the spammer's own inbox. Spammers may send their spam out to thousands of email addresses, and inevitably a lot of those emails are going to bounce. Since spammers don't want to receive hundreds of bounce back messages, this prevents that from happening.
  • To trick the recipient in to believing the email is from a legitimate source.

While there is no fool-proof way to prevent either type of abuse to your email address, you could adopt some "best practices" when it comes to your email security:

  • Update your email account password frequently.
  • Avoid using your primary email account for everything online. If you are signing up for something like a mailing list, contest, application form, or something similar, use a free throwaway email account like Gmail or Hotmail, something you don't mind deleting if it gets abused.
  • Only use your primary email to communicate with people you know or trust, this may include financial institutions.
  • Always run full virus scans on your computer (at least once a week).
  • Avoid using your email address in online blogs and posts. If you have to, try using (at) and (dot) com instead of @and.com to prevent malicious automations from harvesting your address.

The short answer is, not much. There are no definitive ways to prevent someone from harvesting your email address from the internet and using it for spam. Blocking your own email account may cause you more problems. If the spoofing is recurring and causing a lot of inconvenience, the best thing to do would be to delete the account and start over with a new email account (hence the recommendation regarding throw away email accounts). If you are getting relentlessly spammed, the attacks usually only last for a week or two, sometimes less. If it’s a one-off email like the example above, delete it and remain vigilant.

BACK TO LATEST NEWS

Other News

IDCARE is always active in the media from radio to TV, social media and news articles. Keep up to date with what's happening at IDCARE and in the media.

Telephone scam targeting mandarin speakers

Since late March 2020 there has been a notable spike in scams targeting the Chinese-Australian community.

more info
Scams

July 10, 2020

Facebook Security Incident - Update

Implications of Facebook data compromise for Australian and New Zealand users.

more info
Data Breaches

October 13, 2018

Australia Post Phishing Scam

Phishing text message appearing to come from Australia Post.

more info
Scams

December 7, 2018

CONTACT US

IDCARE is here to provide you with specialist support and guidance when faced with a cyber and identity related issue. Contact one of our Identity & Cyber Security Case Managers to learn more about our Support Services and how we can help you.   
Call Centre Icon

Call our AUSTRALIAn
NATIONAL CASE MANAGEMENT CENTRE

1800 595 160

Mon - Fri: 8am - 5pm AEST

QLD: 07 3555 5900
ACT & NSW: 02 8999 3356
VIC: 03 7018 2366
NT, SA & WA08 7078 7741

Call Centre Icon

call our NEW ZEALAND
NATIONAL CASE MANAGEMENT CENTRE

0800 121 068

Mon - Fri: 10am - 7pm NZST

AKL: 09 884 4440