Brand owners frequently use SPF and DKIM to protect their brands from email forgery. For example, a brand owner could register the same domain name under multiple top-level domains (TLDs) (such as .com, .net, .org, etcetera) and announce SPF/DKIM records for all of these domains (even if they were not actively being used). While generally effective, there is one loophole: what about the .gov TLD?
This loophole was recently exploited in a massive phishing attack against American Express, which started on March 4.
more here.............................http://blog.trendmicro.com/trendlabs-security-intelligence/phishing-and-the-gov-tld/
This loophole was recently exploited in a massive phishing attack against American Express, which started on March 4.
more here.............................http://blog.trendmicro.com/trendlabs-security-intelligence/phishing-and-the-gov-tld/