Clik here to view.
Using DMARC in Office 365
Exchange Online Protection (EOP), also known as Office 365, will soon be supporting DMARC for authenticating email which is a feature designed to combat phishing and spoofing of email. If you’re...
View ArticleClik here to view.
A workaround for receivers who want anonymous inbound email over IPv6 but...
When signing up for anonymous inbound IPv6 support in Office 365, Office 365 requires that senders over IPv6:Send email from an IP with a PTR recordThe sending message must pass either SPF or...
View ArticleClik here to view.
Office 365 increases its malicious URL coverage
Over the past two weeks, Office 365 (Exchange Online Protection) has improved its detection of spam, phishing and malware by increasing the number of URLs in its reputation lists. Two months ago we...
View ArticleClik here to view.
I am thinking of starting a podcast
For several months now, I have been thinking about starting a podcast – Terry Zink: Security Talk (which coincidentally happens to be the name of this blog). I’ve been toying with this idea since...
View ArticleClik here to view.
Office 365 releases IP throttling
One of the improvements to the Exchange Online Protection (EOP) service, also known as Office 365, that has been released over the past few weeks is IP throttling [1]. Office 365’s implementation looks...
View ArticleClik here to view.
An update on DKIM-on-IPv4 and DMARC in Office 365
If you’re wondering when Office 365 is going to release inbound validation for DKIM-on-IPv4 and DMARC support, I have an update for you.We are currently evaluating DKIM-on-IPv4 everywhere in the...
View ArticleClik here to view.
The Red Queen theory of Internet security
I sometimes think to myself about how little progress has been made in Internet security in general since I first started working in it 10 1/2 years ago.To be sure, lots of things have come out:Email...
View ArticleClik here to view.
Cyber thieves stealing from businesses and how DMARC can help
I read an article yesterday entitled Cyber thieves stole $215 million from businesses using hacked email addresses. How did they do it? Here’s a key except:Here's a nightmare scenario: You're working...
View ArticleClik here to view.
My podcast: Episode 1 – The Terry Zink Security Talk Podcast Begins!
It’s finally here, the Terry Zink: Security Talk podcast! This podcast is a short introduction about what this podcast is all about. Who am I? Why am I doing this? And what will I be discussing? Just...
View ArticleClik here to view.
My podcast: Episode 2 – The Red Queen theory of cyber security
This podcast is episode 2 of the Terry Zink: Security Talk podcast – The Red Queen theory of cyber security. This goes over my previous blog post here: Blog post - The Red Queen theory of cyber...
View ArticleClik here to view.
How Office 365 does SPF checks for customer-to-customer mail
There may be some confusion about how Office 365, or Exchange Online Protection (EOP), does SPF checks on incoming email - especially in the case when Customer A sends email to Customer B and both...
View ArticleClik here to view.
Best Practices for Exchange Online Protection customers to align with DMARC
BackgroundSpammers frequently forge the "From" address on email messages so the spam appears to come from a familiar sender such as your bank or social network, or more dangerously, from your own...
View ArticleClik here to view.
How to align with SPF and DMARC for your domain if you use a lot of 3rd...
BackgroundOne of the pieces of advice I frequently give these days to organizations is for domains to set up DMARC records, and implement a hard fail in their SPF record. This is straightforward for...
View ArticleClik here to view.
Podcast episode 3 – The psychology of spamming.
This podcast is episode 3 of the Terry Zink: Security Talk podcast – The psychology of spamming. It is a podcast version based on a presentation I did at the Virus Bulletin 2010 conference in...
View ArticleClik here to view.
Podcast episode 4 – Why do spammers spam?
This podcast is episode 4 of the Terry Zink: Security Talk podcast. It’s based upon a blog post I wrote 15 months ago. DescriptionWhy do spammers do the things they do? Don't they know they are...
View ArticleClik here to view.
Office 365 will slightly modify its treatment of anonymous inbound email over...
Exchange Online Protection (EOP), aka Office 365, is going to be making a small change to its behavior for inbound anonymous (i.e., not sent over TLS) email sent over IPv6. Luckily, for customers with...
View ArticleClik here to view.
Office 365 and outlook.com/Hotmail are converging infrastructure
If you’ve talked to me in person over the past few months, you may have heard me talk about this. But if not, I’ll talk about it in this blog post and what it means. Some backgroundExchange Online...
View ArticleClik here to view.
Introducing NDR backscatter storm prevention
A few weeks ago, we rolled out NDR backscatter protection with Boomerang for hosted mailboxes in Office 365, and that change is going live this week for customers with on-premise mail servers.Next up...
View ArticleClik here to view.
Office 365 and outlook.com/Hotmail are converging infrastructure
If you’ve talked to me in person over the past few months, you may have heard me talk about this. But if not, I’ll talk about it in this blog post and what it means. Some backgroundExchange Online...
View ArticleClik here to view.
What is DMARC BestGuessPass in Office 365?
If you’re a customer of Office 365, you know that you’ve been protected by DMARC for the past several months. But you may have a question if you look at the email headers. What is this...
View Article