We're facing an issue with spam emails that seem to come from Gmail, but, oddly enough, the headers are faked to make it look like they're from our CEO. I'm wondering if services like Proofpoint or Harmony could help with this problem. Would those services be effective considering Gmail usually has a clean IP reputation, which might prevent it from being flagged by filters? Currently, we only have M365 Defender P1 or EOP level licensing, and honestly, our email filtering setup consists of some convoluted Exchange rules that were left behind by a previous admin.
5 Answers
Don’t overlook Mimecast for impersonation protection as well; it’s one of the contenders out there. Just be sure to evaluate all options based on your specific needs.
Honestly, you might be fine sticking with Defender for Office 365 P1. Just ensure you've enabled impersonation protection and reviewed your anti-spam and anti-malware settings thoroughly. The Microsoft spam filter interface definitely needs some work, though.
A lot of good third-party spam filters should filter out impersonation emails effectively, especially if they can authenticate against your directory. They basically check if the sender's name matches someone in your employee records.
One way to combat this impersonation is to set up transport rules that identify emails sent from outside your organization that claim to be from internal users. For example, you could have a rule that adds a warning when such emails arrive, letting users know they might be dealing with a spoofed message. This might help, but consider quarantining messages instead of just putting up warnings for added safety.
Absolutely, filtering services like Harmony can manage impersonation attempts, even from Gmail. We use Harmony in our organization, and it's been pretty effective at blocking these threats.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures