All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Google Spoofed Via DKIM Replay Attack: Unveiling a Real-World Phishing Case

By

frasermarlow

10mo ago· 10 min readenNews
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

Pulled from the oven just right. Trustworthy, fact-dense, deeply satisfying.

Score100TypenewsSentimentneutral

Summary

The article discusses a real-world phishing case where a Google spoof used a DKIM replay attack to deceive users with a fake subpoena. It details the investigation into the suspicious email and the concerns it raised about email security.

Key quotes

· 3 pulled
This was the email:
Unsure whether it was safe or a scam, he reached out to me for help verifying its authenticity.
The email was convincing enough to create real concern, and that’s what makes this story worth sharing.
Snippet from the RSS feed
Learn how a Google spoof used a DKIM replay attack to bypass email security and trick users with a fake subpoena in this real-world phishing case.

You might also wanna read

Scammers compromise real Microsoft email address to send phishing links

Scammers have compromised a legitimate Microsoft email address ([email protected]) that is normally used for 2FA authentication codes and ac

gigcitygeek.com·4d ago

Using Cloudflare Turnstile to Evade Phishing Sandboxes: A Red Team Field Guide

A red teamer recounts their experience with email phishing engagements and how modern email defenses (sandboxes, scanners) have made traditi

specterops.io·3d ago