The Terry Zink Security Talk blog comes to an end

Some of you may have noticed that the amount that I post on this blog has lessened over the years, and especially this year. This is not for lack of ideas, but simply lack of time to write good, in-depth articles. However, irrespective of that, this is my last blog post on this blog. After…

1

The unauthenticated sender ‘?’ comes to Outlook

About a year ago, in Office 365, we released the feature that – similar to Gmail – Outlook Web Access stamps a ‘?’ in the sender photo when the message is not authenticated with either SPF or DKIM. Well, I was pleasantly surprised to see this morning it’s also in Outlook (for Windows, not sure…

0

Chasing the (very) long tail of unauthenticated domains

One of the requests that frequently crosses my desk (computer screen) is a vulnerability claim that a certain domain that is owned by Microsoft is prone to spoofing because it does not have email authentication records – neither SPF, DKIM, nor DMARC. Because this can be used to spoof, it is a vulnerability. Microsoft Corporation owns…

0

A way to (sort of) approximate DMARC aggregate reports in Office 365

One of the most common questions people ask me is “How do you get Office 365 to send out DMARC aggregate and forensic reports?” This is followed by “When is Office 365 going to send out DMARC aggregate and forensic reports?” Office 365 doesn’t send out DMARC reports, nor is it on our public roadmap….

0

The all-up guide (mostly) to cross-domain antispoofing protection in Office 365

If you haven’t seen it yet, we recently released Cross-Domain Antispoofing protection for our Advanced Threat Protection and E5 customers. You can read all about it here on our official support page (as opposed to this blog): Antispoofing in Office 365. This augments my previous blog post about intra-org (or self-to-self) spoofing, which is at http://aka.ms/AntispoofingInOffice365 (yes,…

0

How to get images to load in Outlook.com, Office 365, and Outlook email clients

People sometimes ask me “How do I, as a sender into Office 365, get images to load by default? Every time I send, the images are blocked.” I’ve decided to finally answer that question so I don’t need to keep typing my response.   1. Images in Outlook.com load by default if you’re a good…

0

Strategies for reducing crytocurrency’s trading friction (that don’t work that well)

Disclaimer – If you haven’t read my disclaimer yet, make sure you do so here. TL;DR version – Buyer beware, I am not an expert, I am fumbling my way through this like the rest of you. Also, I hold a little bit of Bitcoin, Ethereum, and Cardano. So, over the past couple of weeks I’ve…

1