SMTP Smuggling – Sending email as if it was from another persons address is possible

There are a number of ways in which threat actors can send an email which to all appearances purports to come from a legitimate contact or source. GroupSupport have been tracking a rise in these types of phishing attempts in general.

One method via which this is achieved is SMTP Smuggling whereby malicious email code is embedded in genuine emails passing through SMTP. 

It is a fairly complicated concept and full details can be seen at the link below.

It remains critical to be sceptical and cautious of emails where the request is odd, the tone is off or you simply don’t feel like it is correct as an email from a trusted contact can be faked.

For full details https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/

GroupSupport Monitoring software will monitor your devices for the latest patches and where appropriate apply them whilst reporting on the progress. The software also allows support and other maintenance issues to be resolved in the most expedient manner.