SECURITY
SECURITY
Recently a critical information infrastructure in Cyprus fell victim to a spoofing attack, according to which an email account of the infrastructure was falsified with malicious intent.
Spoofing attack concerns the creation of emails entailing malicious intent. Such emails are created by falsifying e-mail accounts and web addresses from a legitimate source and show that they are sent by the latter in order to mislead the recipient.
The purpose of forging an email address is to get the recipient to take action by trusting the sender. The result of a successful spoofing attack could be the interception of credentials, money, the control of a system as well as the installation of malware.
Spoofing protection measures include the following:
- Adjust spam settings
- Add a Sender Policy Framework (SPF) record where an SPF record lets recipients know if the email is spam
- Use Domain Keys Identified Mail (DKIM) encryption template in the email header. This way when a server receives an email, it checks if someone has lost that email while it was sent, allowing the SPF to minimize the risk of forgery
- Careful check of the sender’s information. Check email headers. The sender’s IP address can be extracted from the email headers and a reverse IP search can be performed to verify the sender
- Installation of DMARC Record in the infrastructure. DMARC (Domain-based Message Authentication, Reporting & Conformance) performs authentication, reporting and compliance based on emails received for protection against spoofing and phishing attacks
Also read: Cyberattack on CNA | What the Digital Security Authority says
NEWSLETTER SUBSCRIPTION
Cyprus | Meeting of President Christodoulides with an FBI team
The Republic of Cyprus and the United States, with satisfaction, reaffirm their joint commitment to strengthening Cyprus’ capabilities to…
Blackwolf Private Security Services | Tailored Solutions for top-notch security
In today’s world, security is essential, not optional and as such, Blackwolf Private Security Services Ltd., understanding the…
Hellenic Fire Brigade | Participation in the international exercise of full Launch of Detection / Sampling in a CBRN environment in Germany
Within the framework of the actions of the European Civil Protection Mechanism, specialised officers of the Fire Brigade of the team…
Ukraine | Receipt of 1.2 Million Drones in 2024
The Ukrainian Ministry of Defence announced that it had supplied 1.2 million unmanned aerial vehicles to the Ukrainian army in 2024.
Germany | Record Arms Exports to Turkey
German arms exports and defence ties have effectively been on hold since 2016. However, this is now changing due to the complex…
BATTLEFIELD ReDEFiNED 2024 | The Major Defence and Security Conference has Started in Cyprus – Photos
The defence and security conference, BATTLEFIELD ReDEFINED 2024, started today and is taking place in Nicosia…
OPCW | Urgent Meeting on the Syrian Stockpile
The Organisation for the Prohibition of Chemical Weapons (OPCW) will hold an emergency meeting on Thursday to address concerns…
USA | Amendment to the Defence Budget Strengthens Washington-Nicosia Defence Ties
The US National Defence Authorisation Act (NDAA) adds the Republic of Cyprus to the list of countries eligible to participate in…
Cyprus | The Minister of Defence in Jordan – Signing of a Defence Cooperation Agreement
In the context of the meeting, a review of the bilateral cooperation between the two countries in the fields of defence and…
0 Comments