Hi Sebastian,
I have a firm of solicitors as clients and they get these same highly
targeted emails. They are much more sophisticated and have caused us
some problems already.
All I can do is keep reminding them to check that the email is authentic.
Some Solicitors have started adding a warning to incoming emails along
the lines of "This email originated from outside the company. Always be
cautious following links or opening attachments. We will never ask for
your internal passwords on these emails."
I need to figure out how to add a warning to incoming emails when I have
a spare moment.
Matthew
On 15/11/2017 09:41, Sebastian Arcus wrote:
I have noticed in the last half a year or so the rise in much more
focused email campaigns. I have some solicitor and accountant clients
who receive these scam emails which are a notch above the rest. The
English is good and correctly spelled. The footers look professional
and just like the ones from other offices in the trade. The wording is
very similar to the usual emails they receive - such as a reminders
for payments, or an enquiry about documentation for the sale of a
house. The emails often contain links to various popular cloud
platforms - such as SharePoint, DropBox etc. Most of the emails come
from clean domains, or from large webmail providers.
I can't really train the bayesian filter on these emails, as it would
start to affect ham emails classification. I also assume that RBL's
can't do much, as they would have to block everything from DropBox or
SharePoint if they start blacklisting these emails. Is there anything
else that could be done to block this stuff? Have others seen these
types of emails?