Email spoofing is when the sender of an email typically spam/forges/spoofs the email header "From" an address so the email being sent appears to have been sent from a legitimate email address that is not the spammers own address.

Reasons scammers do this:

  • To trick spam filters into allowing the email through by using a reputable email address. This way scammers can ensure their email goes to yours, friends or family member’s inboxes rather than their spam folder.
  • To prevent the bounce back emails from being received in the spammer's own inbox. Spammers may send their spam out to thousands of email addresses, and inevitably a lot of those emails are going to bounce. Since spammers don't want to receive hundreds of bounce back messages, this prevents that from happening.
  • To trick the recipient in to believing the email is from a legitimate source.

While there is no fool-proof way to prevent either type of abuse to your email address, you could adopt some "best practices" when it comes to your email security:

  • Update your email account password frequently.
  • Avoid using your primary email account for everything online. If you are signing up for something like a mailing list, contest, application form, or something similar, use a free throwaway email account like Gmail or Hotmail, something you don't mind deleting if it gets abused.
  • Only use your primary email to communicate with people you know or trust, this may include financial institutions.
  • Always run full virus scans on your computer (at least once a week).
  • Avoid using your email address in online blogs and posts. If you have to, try using (at) and (dot) com instead of @and.com to prevent malicious automations from harvesting your address.

The short answer is, not much. There are no definitive ways to prevent someone from harvesting your email address from the internet and using it for spam. Blocking your own email account may cause you more problems. If the spoofing is recurring and causing a lot of inconvenience, the best thing to do would be to delete the account and start over with a new email account (hence the recommendation regarding throw away email accounts). If you are getting relentlessly spammed, the attacks usually only last for a week or two, sometimes less. If it’s a one-off email like the example above, delete it and remain vigilant.

BACK TO LATEST NEWS

Success Stories!

Other News

IDCARE is always active in the media from radio to TV, social media and news articles. Keep up to date with what's happening at IDCARE and in the media.

You can now report a phishing scam to IDCARE

Information sharing is an important way to help keep IDCARE informed.

more info
IDCARE

iappANZ Annual Summit – Melbourne 2018

Australian Information and Privacy Commissioner discusses latest quarterly report on the Notifiable Data Breaches scheme.

more info
IDCARE

Cathay Pacific Data Breach

Today Cathay Pacific publicly notified the probable compromise of personal and account related information of some 9.4m customers.

more info
Data Breaches

Success Stories!

CONTACT IDCARE

IDCARE is here to provide you with specialist support and guidance when faced with a cyber and  identity related issue. Contact one of our Identity & Cyber Security Counsellors to learn more about our Support Services and how we can help you.   

AUSTRALIA

1300 432 273
Mon - Fri : 8am - 5pm AEST

NEW ZEALAND

0800 201 415
Mon - Fri: 10am - 7pm NZST