Home Security
PC Matic
PC Matic VPN
More Products
Support Unlimited
Identity Theft Protection
PC Magnum
Threat Awareness
How PC Matic Protects You
SuperShield Whitelist
Compare PC Matic
Norton
McAfee
Avast
AVG
Business Protection
PC Matic Pro
PC Matic MSP
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
Compare PC Matic Pro
ThreatLocker
Airlock Digital
VMware Carbon Black
AppLocker
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
OEM Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
Tools & More
Ransomware Center
Internet Speed Test
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

What is Email Spoofing?

What is Email Spoofing?

By Leo Notenboom

Recently, while I was away on a business trip, my wife received this email:


From: Leo A. Notenboom [mailto:********@yahoo.com.sg]
Sent: Thursday, September 13, 2012 10:10 AM
To: ****@*********.***
Subject:

http://********.av.tr/cheeseblind/davidmiller24/?/b34a/


I’ve used asterisks to obfuscate a few things, but the essence is this:

  • The From: line displayed my name

  • However, the From: line also showed a completely random, unrelated email address that is most definitely not me.

  • The email was sent to my wife’s email address.

  • The email message had no Subject line.

  • The email message consisted of only a link.

    • Because we communicate a fair amount by email when I travel, she thought it was from me and clicked the link.

    Whoops.

    I’ve been getting lots of reports of this particular scenario lately.

    I’ll describe what I did next and what this appears to be. And perhaps reassure you a little about what it is not.

    What I did next

    My wife, bless her heart, realized what had happened immediately. She indicated it was some kind of “get rich quick” thing. She immediately did the right thing: she closed the browser, instant messaged me about what had happened, and stopped using the computer.

    As soon as I had a chance, I connected remotely using TeamViewer and began a series of scans.

    I downloaded and installed Malwarebytes Anti-malware.
    I updated the Malwarebytes database, even though I installed immediately after downloading. There was indeed already an updated database.
    I ran a “quick” scan, which turned up nothing.
    I ran a lengthier “full” scan, which turned up nothing.
    I ran Microsoft Security Essentials, which was the anti-virus and anti-spyware tool already installed and protecting her system, and ran a lengthy full scan with it as well, which also turned up nothing.

    With all the scans turning up nothing, I decided that we’d probably dodged a bullet and told my wife to resume using her machine, but to keep an eye out for any odd behavior.

    Yes, absolutely, there could still be malware that resulted from this. But with scans showing nothing, I felt it safe enough to play the odds. If I’m wrong … well, you’ll hear about that too.

    Read the rest of the story here..

    This post is excerpted with permission from Leo Notenboom.

    Stop Responding to Threats.
    Prevent Them.

    Get Protected

    Want to get monthly tips & tricks?

    Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

    Related Articles