Spring Cleaning Your Spam Filter Whitelist

By May 20, 2019 Security
Spring Cleaning Your Spam Filter WhiteList

It’s time to add your spam filter whitelist to your spring cleaning routine.

For some of us who have been using the same spam filter for years, we may have a long list of allowed addresses or domains. Because phishing email is involved in 91% of breaches, I can’t stress enough how important it is to manage your whitelist.

As security has evolved, I continually find things that I did months or years ago that I would do differently today. So, I am learning to go back and review the things that are on autopilot to make sure they meet my current standards.

On spam filters – and many other things, for that matter – we all get in a hurry sometimes. So we make broad changes just to make sure that email gets through. Maybe you had 2 or 3 emails blocked from Gmail, so you decided to allow all of gmail.com through the filter. While you got those emails through, you increased your risk of getting malicious emails.

Why revisit and clean up your whitelist?

It’s the unintended consequences that get us many times.

With the increase in spoofed email addresses that appear to come from a CEO or co-worker, it is important to make sure that you have not whitelisted your own domain. And this is more common than you think. You may have your newsletter sent from an outside firm or other applications that do not send through your email server that need to come in. The easy answer is to allow entire domains, but rarely (if ever) is it the right choice. In many cases , whitelists are a free pass through your email security system.

There are typically 2 levels of whitelisting to be aware of. First is the global level, which your IT company or IT administrator needs to review. Then there is your personal whitelist that you can clean up yourself. Both are important to review.

I encourage you to take some time this week to clean up your whitelist and improve your email security. You may be surprised at what you find!

 

This article was authored by Ryan Pieken, Sr. Consultant CIO / CISO Services.


Recent Posts / View All Posts

Remember software and hardware updates are essential to cyber security

Upgrade from Windows 7 to Remain Secure and Stable

| Announcements, Security | No Comments
It’s still coming whether we like it or not: Windows 7 End of Life. If your organization is still running Windows 7, what can you expect? Is this truly the end of Windows 7, and should you upgrade? The answer, realistically, is yes. It’s a smart move to upgrade now, for security and stability. Mainstream support for Windows 7 ended in 2015. Extended support ends on January 14, 2020. Windows 7 is now end-of-life. It will not be supported, nor will it receive regular patches and security updates. What's the risk of not upgrading? Failing to upgrade to supported software,…
Dictate in Office 365

Dictate Instead of Typing in Office 365 Apps

| Office 365, Tech Tip | No Comments
Did you know that in many Office 365 applications you can dictate text instead of typing it? You may find this useful, especially if you need to respond to an email message and your hands aren’t free, or if you want to brainstorm out loud and capture your thoughts without taking notes by hand. First you should check if you have a working microphone. If you're using Windows 10, you can use the Voice Recorder app to do a test. Open this program and record a small snippet of audio. Play it back in order to see if your microphone…
Microsoft 365 Cloud-Based Apps and Security

What Is Microsoft 365 vs. Office 365?

| Cloud Solutions, Office 365, Security | No Comments
You may have started to hear about Microsoft 365. Is it the same as the similarly named “Office 365”? The two are different, and here we’ll explain the difference and what Microsoft 365 Business can offer your organization. First of all, Microsoft 365 is not the same thing as Office 365. Office 365 is a cloud-based suite of productivity apps, such as Word, PowerPoint, Excel, and Outlook. It’s the modern, cloud-based version of the Microsoft Office suite of products you’re probably familiar with already. Microsoft 365 Business is a bundle of services that include the apps and productivity tools of…