Email is the number one way that bad actors gain foothold into environments these days, all too often resulting in major damages in the form of lost finances due to social engineering attacks against payroll/accounts-payable, or introduction of malware such as crypto-locking ransomware introduced by hackers who tricked a victim through email. I recently discovered how a feature of Outlook/Exchange could be used as an intelligence gathering tool by hackers performing reconnaissance or scanning against a mail system. More specifically, “Delivery Receipts” can be used as an immediate feedback system informing hackers of the success/failure of their attempts to get emails through the spam/phishing policies and into their intended victim's inbox. Default notification configuration can provide confirmation to hackers when an attempt to bypass security policies succeeds.
0 kommentar(er)
