How to Proactivly protect against Phising attacks?

[jackadaniel at gmail.com (Jack Daniel)]

Several good suggestions so far, let me add-

If the messages are really targeted, the headers should provide IPs
and/or domains which you can block at the gateway; OTOH if they are
using typical dumb spambots some of the advanced anti-spam features of
your systems may help keep the mail out.

Full-disclosure bit: Astaro frequently gives me a paycheck. But the
same is true (for variable values of true) regardless of the type of
email gateway.  If you want product-specific suggestions, please
contact me off-list.

Jack


On Thu, Dec 18, 2008 at 7:53 AM,  <infolookup at gmail.com> wrote:
> Hello All:
>
> We have been targeted a lot recently by what seem to be the same group of spammers trying to get email credentials 
> from our users.
>
> Each time the try to change the email format so it looks more like a legitimate email from our IT department. Not to 
> mention sending from different email accounts each time.
>
> Any idea how we can go about trying to track down the origin of these emails(mail server or actually host sending the 
> emails), and notify the ISP or someone?
>
> Or even proactivly block these Phising attacks. How do others deal with this type of behaviors?
>
> Our setup --?Astaro Email Gateway, and Exchange 2003.
>
> All ideas are welcomed.
> Sent from my Verizon Wireless BlackBerry
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com