News: Flipkart CEO’s email account spoofed, not hacked

News: Flipkart CEO’s email account spoofed, not hacked

159
0
Flipkart Ceo

Flipkart CEO’s email account spoofed, not hackedAccording the Flipkart sponsors email “We would like to clarify it is not a case of hacking. Flipkart’s corporate email system leverages the highest standards of security including but not limited to two factor authentication. We have filed a case of email spoofing which involves use of a forged email header to make it look like a legitimate email. This case of email spoofing was immediately detected and a report was filed with the police.” Do read, Binny Bansal’s Flipkart CEO Email Account Spoofed, Not Hacked.Flipkart Ceo

News: Flipkart CEO’s email account spoofed, not hacked

Email spoofing

A spoofed email is one that appears to originate from one source but has actually emerged from another source. Falsifying the name and / or email address of the originator of the email usually does email spoofing. usually to send an email the sender has to enter the following information:

i. email address of the receiver of the email

ii. email address(es) of the person(s) who will receive a copy of the email (referred to as CC for carbon copy)

iii. email address(es) of the person(s) who will receive a copy of the email (referred to as CC for carbon copy, but whose identities will not be known to the other recipients of the e-mail (known as BCC for blind carbon copy)

iv. Subject of the message (a short title / description of the message)

v. Message

Certain web-based email services like http://www.SendFakeMail.com, offer a facility wherein in addition to the above, a sender can also enter the email address of the purported sender of the email. Consider Mr. Siddharth whose email address is siddharth@hotmail.com. His friend Golu’s email address isgolu@yahoo.com. Using SendFakeMail, Siddharth can send emails purporting to be sent from Golu’s email account. All he has to do is enter golu@yahoo.com in the space provided for sender’s email address. Golu’s friends would trust such emails, as they would presume that they have come from Golu (whom they trust). Siddharth can use this misplaced trust to send viruses, Trojans, worms etc. to Golu’s friends, who would unwittingly download them.