Messaging Gateway

  • 1.  CEO or Whaling attacks

    Posted 04-02-2020 12:51 PM
    Is there a prescribed way of the Messaging Gateway identifying CEO or whaling phishing attacks.

    We've received a number of attempts using Incoming e-mails with the name of Directors requesting payments from the company secretary.

    In our case this shows in outlook where the From appears as Director Name <Some other E-mail address> sent to the company secretaries e-mail.
    and the reply to address is simular as Director Name <Director>.

    I think it maybe possible to create a content rule to detect this but can't establish the field that would.
    I think it would be fine if we could just modify the subject to identify that this could be a phishing attack.

    Any help would be appreciated.