Email Spoofing is like faking the from email address in the hopes of fooling the receiving end. These emails are spam or are phishing emails. Some does not require authentication like username and password. You could be thinking that your email account is hacked since most of the recipients can be your contacts or yourself, but this is not the case.
When you get such email, you may check the full header of the email, you will be able to trace the IP address where the email is from. IP Addresses will be random and may come from different countries.
When a server sends an email message, it specifies the sender, but this sender field can be specific or scripted. In saying this, the from email address can be from your own or from the list of email accounts that you have, or email address that you do not own.
Here are the steps to be taken if your mail identity has been spoofed:
- Change your password as soon as possible for all your email accounts
- Enable sender filter
- Enable recipient filter
- Do NOT respond to any spoofed emails
- Add or update the block list regularly
There are two DNS Records that you can add to help with the spoofing. These are DKIM and SPF. A DKIM Record provides an encryption key and a digital signature that verifies an email message if it’s forged or altered. Below are the steps on how to set up your DKIM:
Step 1. Log in to cPanel using this link format: http://yourdomain.com/cpanel/
Replace yourdomain.com with Main Domain Name connected to your hosting.
Step 2. Click Email Deliverability under the Email panel.
Step 3. Locate the domain name that you wish to do changes with, and click Manage.
Step 4. Under DKIM, click Generate Local DKIM Key.
Step 5. Click Install The Suggested Record.
|Note: Please allow at least 2 – 4 hours propagation time for the whole internet to cache the information.|