Check email header information for signs of spoofing

By December 3, 2018 Email, Security, Tech Tip
Email Spoofing

Think about this scenario: A friend tells you that they received a message from your email address that wasn’t really sent from you. They think you’ve been hacked and your account is sending malicious emails to friends. How do you know if your email address account has been compromised, or if this malicious attempt is just spoofing your email address?

Email “spoofing” means that an attacker is impersonating you by pretending to send an email from your account. The recipient of the email will see your email… but if you dig deeper into the email message’s contents, you can often see whether the email was truly sent from your account or only made to appear so.

This type of impersonation is possible because email messages can show a difference between “display” information and the actual information embedded in what’s called the “email header”. Spoofing is an attempt to forge the email header, taking advantage of email protocols’ lack of authentication.

How do you view an email header or the “original message”?

  • In Gmail, while viewing the email, click the More icon (three vertical dots) at the top right and select “Show original” from the list.
  • In Outlook, open the email, then go to File > Properties and look in the Internet headers

If the authenticated sender, or “from” address, in the email’s properties matches your email address, then your account was compromised. But if the sender’s email address in the properties isn’t your address, then it may have simply “spoofed” your email while actually sending from a different account.

It always pays to check email message discrepancies. Keep an eye out for display names and “from” addresses that don’t seem to match each other, or don’t match the original message properties.


Recent Posts / View All Posts

2019 State of the IT Industry Landscape by OXEN Technology

2019 State of the IT Industry Landscape, Part 2: Economic Outlook & SMBs

| Leadership | No Comments
In this second part of our 2019 review of the IT landscape, we look at the current economic outlook for the U.S. and the IT industry. We also look at how small and medium-sized businesses (SMBs) view technology and their IT providers. This provides context for the economic and financial considerations around the future of technology. Do we expect growth or contraction? U.S. Economy Outlook As a Midwest technology provider, OXEN focused our review on the economic outlook for the U.S. and, specifically, our local nine-state area. The overall economy remains promising for 2019. The leading economic indicator for the…
2019 State of the IT Industry Landscape by OXEN Technology

2019 State of the IT Industry Landscape, Part 1: Change & Cybersecurity

| Leadership | No Comments
The IT industry is very dynamic. Increasing cybersecurity threats and new, emerging technologies demand that we pay attention to what’s on the horizon. In order to be a valuable partner, consultant, and trusted IT leader for our clients, OXEN Technology must know what’s going on in our industry. We are obligated to understand the environment our clients are operating in and the technology needs that are (and will be) affecting them. With this in mind, we take a step back every few years and review the IT landscape. We hear about new cybersecurity threats and emerging technology all the time.…
The Shared CIO: Business & IT Leadership

The Shared CIO Role: Evolving IT Leadership to Serve You Better

| Leadership, Security | No Comments
I hope it’s OK to write about something other than the newest cloud feature or the latest tech gadget, because I’m not going to talk about new technologies in this article. Rather, I would like to talk about the necessary leadership in today’s businesses. Not so long ago, the only IT goal of any business was to find someone who could do the work of implementing, upgrading, and maintaining technology. It was a hard-to-find skill set, and it was even difficult to find someone able to set up a basic network. That is not the case today. There are IT…