Cyber threat: Emails under a false name

In cyberattacks categorized as "impersonating an employee" email, information is specifically gathered to create emails that appear credible in the name of employees or managers. Without appropriate technical safeguards, such messages can be delivered relatively easily.

A correctly configured email system ensures that

• Only authorized servers are allowed to send emails for your domain.

• manipulated or fake news can be detected

• Receiving systems receive clear instructions on how to handle such emails.

Example: CEO fraud – how does the risk arise?

CEO fraud is a form of cyber fraud and an example of "emails sent under a false name." Attackers impersonate executives or internal contacts to fraudulently obtain payments or sensitive information.

In most cases, the basis for this is not compromised infrastructure , but

• Missing or insufficient email authentication

• Insufficient domain security

• Social Engineering

If an email system is not adequately secured, attackers can send emails that appear to originate from your domain or company. Recipients often cannot tell that the message is fraudulent. A properly secured email system prevents such attacks or reliably detects them.