Email Spoofing

What is Spoofed Email?


Spoofing an email means faking the sender address to hide the true origin of the message.

 

When you send a letter through the post, you generally write a return address on the envelope so the recipient can identify the sender, and so the post office can return the mail to the sender in the event of a problem. But nothing prevents you from writing a different return address than your own; anyone could send a letter and put any return address on the envelope. Email works the same way. When a server sends an email message, it specifies the sender, but this sender field can be forged (i.e., spoofed).

 

Receiving spoofed email doesn't necessarily mean that any account was compromised, but if you're concerned that an account may have been compromised, please contact the IT Service Desk.

 

Why do attackers spoof emails?
 

  • Pretending to be someone the receiver knows. This can be used to ask for sensitive information or for a monetary scam.
  • Pretending to be from an organization the receiver has a relationship with. Phishing attempts to get hold of login details for banks etc. are a common example.
  • Hiding their true identity.
  • Easy to rotate. If you are spamming, your address is bound to be blocked quickly. If you’re able to switch sender addresses, who cares?

 

I think someone is spoofing a UFV address. What can I do?

 

If you receive a suspicious email, or you aren't sure about what you received, forward the email to phishreport@ufv.ca. This inbox is monitored daily and we endeavour to answer any questions you have.

 

Details

Article ID: 1881
Created
Thu 9/2/21 1:10 PM
Modified
Tue 11/23/21 3:23 PM