Exchange 2016 stop spoof mail with our domain name

Pero 66 Reputation points
2021-11-29T08:36:44.17+00:00

Hello,

Our company is receiving a lot of spoof mails from various addresses. But biggest problem is these spoof mail domains are identical to our.

Today we got mail from "no-reply@our-domain.hr" with "strange" links. We can block this ip but this will not prevent another mail like "support@our-domain.hr" from another ip and it's just matter of time someone clicks on something malicious.

Is it possible to block "*@our-domain.hr" mails coming from any other address then the one are in SPF or specifically defined ?

Regards,
Pero

Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
6,092 questions
No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Andy David - MVP 110.1K Reputation points Microsoft MVP
    2021-11-29T12:59:05.66+00:00

    What are you using for anti-spam/anti-phishing?

    You really need to buy a 3rd party product or use a 3rd party SMTP gateway to accept mail first. The built-in Exchange abilities are very limited.


  2. Kael Yao-MSFT 21,916 Reputation points Microsoft Employee
    2021-12-02T09:19:00.26+00:00

    Hi Pero.

    Please create a mail flow rule to see if it can help with this issue.
    The rule would be like:
    154451-02.png


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.