Detecting the signs of a "spoofed" e-mail | Crime
"Spoofed" e-mails are just like "spoofed" phone solicitations. The sender has manipulated, or "spoofed," the sending address to make it look as if it has originated from a known or legitimate sender.
The experts of the consumer advocacy site Scambook recommend these tips for detecting "spoofed" e-mails:
1. E-MAIL HEADERS. Verify the e-mail is from a known sender first by making sure the e-mail address is the recognized address of the known sender. In Outlook, you can further verify the header by clicking "Other Actions," then click "Message Header." For G-mail, go to the drop-down menu next to the “Reply” icon, then click “Show Original.” For other e-mail services, consult your Tools tab or customer service.
2. MX LOOKUP. "MX” stands for “Mail Exchanger.” It is the server a domain uses to route an email. "Tools such as MxToolbox help find the MX server for the last trusted domain in the header," said Scambook's Director of Marketing Kase Chong. "By identifying your own domain’s stamp, users can identify what IP address sent the message to that domain. If a spammer or scammer has been reported sending dubious mail before, there’s a good chance the address will appear on a blacklist."
3. IP BLACKLISTS. "IP addresses on the blacklist can also be checked by following the 'Show Original' step (on G-mail) and pasting all the header information into a tool like Google Header Analysis, which shows all the IP's involved. For those who have MxToolbox, this tool too can run a blacklist check on IP addresses."
You can also check any IP address at IPChicken.com.
4. DON'T FEED THE SPAMMERS/SPOOFERS. Just like a spoofed phone call, do not reply to a potentially spoofed e-mail. All that does is confirm that your e-mail address is legitimate. That may increase the volume of spoofed e-mails you receive.