How to Proactivly protect against Phising attacks?

[jim.halfpenny at gmail.com (Jim Halfpenny)]

You can check out the headers of the email address. They could indicate
where the emails originated from which may or may not be helpful. Check your
mail relay to ensure that it's secure and does not accept mail originating
from your domain from the internet. If you need to accept mail from your
users from outside your network consider using SSL and authentication.

You should give some consideration to the motive of these attacks. Are the
passwords useful for anthing else other than email? Are the same passwords
used for desktop logins, VPN, web applications etc.

Regards,
Jim

2008/12/18 <infolookup at gmail.com>

> Hello All:
>
> We have been targeted a lot recently by what seem to be the same group of
> spammers trying to get email credentials from our users.
>
> Each time the try to change the email format so it looks more like a
> legitimate email from our IT department. Not to mention sending from
> different email accounts each time.
>
> Any idea how we can go about trying to track down the origin of these
> emails(mail server or actually host sending the emails), and notify the ISP
> or someone?
>
> Or even proactivly block these Phising attacks. How do others deal with
> this type of behaviors?
>
> Our setup --?Astaro Email Gateway, and Exchange 2003.
>
> All ideas are welcomed.
> Sent from my Verizon Wireless BlackBerry
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20081218/ef0489ca/attachment.htm