Slashdot Mirror


Fake "Bill Gates" Message Dupes Top Tools

yahoi writes with this excerpt from Dark Reading that might raise sysadmins' eyebrows about email security, in particular given the big names involved: "A researcher who conducted a successful spear-phishing experiment with a phony LinkedIn invitation from 'Bill Gates' is about to reveal the email products and services that failed to filter the spoofed message — and that list includes Microsoft Outlook 2007, Microsoft Exchange, Outlook Express, and Cisco IronPort. ... The experiment was aimed at measuring the effectiveness of email security controls in several major products and services. And the simplicity and success of the test demonstrated just how powerful social engineering can be and what little technology can actually do about it, security experts say."

2 of 117 comments (clear)

  1. so? by spiffmastercow · · Score: 0, Redundant

    I didn't RTFA, but I'd be pissed if my email server filtered out someone's email just because they had the name "Bill Gates". You know the famous one doesn't have a monopoly on that name, right?

  2. ado7l by Anonymous Coward · · Score: -1, Redundant

    Create, manufacture bUWLA, or BSD Trying to Dissect And sold in the Lay down paper another troubled 200 running NT under the GPL.