Instant message filtering?

This is an idea that I have been thinking about for a while and that is the concept of instant message filtering. I don’t get too much spam on my instant messenger (I use or have used ICQ, Yahoo IM, Windows/MSN/Live Messenger, AIM, gaim, and Office Communicator).  I think I can recall only a handful…

128

Manually hooking up DKIM signing in Office 365

Note: This content also appears on our official documentation here, Use DKIM to validate outbound email sent from your domain in Office 365. Here’s how to enable DKIM signing for your domain if it is hosted in Office 365 (Exchange Online Protection). What steps do I have to take to enable DKIM? First, for each…

76

How antispoofing protection works in Office 365

Update: This blog post is being deprecated and information has been moved to docs.microsoft.com: Antispoofing protection in Office 365 Exchange Online Protection (EOP), the email filtering component of Office 365, is rolling out, or has already rolled out, full antispoof protection for all of its customers. Most of our customers already have this protection, and…

53

Spam from an Android botnet

I came across some interesting spam samples today. The messages all come from Yahoo Mail servers.  They are all from compromised Yahoo accounts.  They are sending all stock spam, the typical pump and dump variety that we’ve seen for years. But what is interesting about them is that they all contain the following Message-ID: Message-ID:…

36

My Hotmail account has been compromised

Well, here’s something I didn’t expect to write about – my very own Hotmail account has had its username and password accosted by spammers! I have a very old one that I opened up years ago.  I use it to subscribe to bulk mail services and use it as the identifying account for my other…

32

Buy stuff from Apple

Before being bought out by Microsoft, a lot of my co-workers bought stuff from Apple (mostly mac laptops, but also iMacs).  I recently bought an iBook second hand, but in my team of 8 people, 4 have bought new Macbooks in the past 4 months.  A few people from other departments have also bought them. …

30

CNN spam

I’ve been seeing some CNN spam the past few days, that is, spam in the form of breaking news stories from CNN.com.  Below is a sample: These all look like legitimate news stories, and indeed, they probably are taken straight from an actual CNN news bulletin (I don’t subscribe so I wouldn’t know).  Indeed, the…

26

Using DMARC in Office 365

Exchange Online Protection (EOP), also known as Office 365, will soon be supporting DMARC for authenticating email which is a feature designed to combat phishing and spoofing of email. If you’re unfamiliar with DMARC, here are a few links that explain it: My own blog post: A brief introduction to DMARC http://blogs.msdn.com/b/tzink/archive/2014/11/04/a-brief-introduction-to-dmarc.aspx My article for…

26

Why does spam and phishing get through Office 365? And what can be done about it?

Introduction As a filtering service, Office 365 (Exchange Online Protection, or EOP) is dedicated to providing the best antispam filtering possible, and we take this task seriously: We are working hard to keep spam out of your inbox We are working hard to ensure we don’t mistakenly mark good email as spam The question we…

25

Guest blogging on Forefront

So I am now a guest blogger on Forefront’s Security blog (link in my links section).  Forefront is another division within Microsoft that provides security solutions for Enterprise. This afternoon, they came around and took some video footage of me and what I’ll be blogging about.  The stuff I blog about over there is identical…

23

ATMs now recognize handwriting

One of my favorite Apple references on the Simpsons comes from the following clip.  During a school assembly, Kearney tells his buddy, "…take a memo on your Newton: Beat up Martin." He scribbles away only to see the Newton’s handwriting recognition interpret his memo as "Eat up Martha."  With my Simpsons-geek friends, I still sometimes…

23

Office 365 releases IP throttling

Update: This blog post is being deprecated and information has been moved to docs.microsoft.com: Configure mail flow using connectors in Office 365   One of the improvements to the Exchange Online Protection (EOP) service, also known as Office 365, that has been released over the past few weeks is IP throttling [1]. Office 365’s implementation…

23

What to do if you’re blocked by 88.blacklist.zap

One of the common questions I get through the feedback form on this blog is what people should do if they are blocked by the 88.blacklist.zap list when they attempt to send a message protected by Forefront Online Security. If you are blocked, send the bounce message to delist @ frontbridge dot com (removing all…

22

Troubleshooting the red (Suspicious) Safety Tip for fraud detection checks

Introduction It has now been about 8 months since we released our antispoofing protection in Office 365, a feature that defends against Business Email Compromise, where the From and To domains are the same. You can read more about that feature at my other blog post Antispoofing in Office 365. To summarize, it defends against others…

21