What Is E-Mail Spoofing?

Article Details
  • Written By: Melanie Smeltzer
  • Edited By: Daniel Lindley
  • Last Modified Date: 20 September 2016
  • Copyright Protected:
    Conjecture Corporation
  • Print this Article
Free Widgets for your Site/Blog
The atmosphere of Jupiter's moon Io collapses every time it is eclipsed by the planet.   more...

September 29 ,  2008 :  The Dow Jones Industrial Average experienced its largest one-day drop in history.  more...

E-mail spoofing is the act of altering certain e-mail header fields to make them appear as if they originated from a different sender. Although this act is sometimes done for legitimate reasons, it is more frequently done for fraudulent purposes. Considered a form of spam, e-mail spoofs are typically sent out in order to obtain sensitive or personal information from the person receiving the e-mails.

Simple Mail Transfer Protocol (SMTP) is a common protocol for sending electronic mail across different Internet protocol networks. Although SMTP is standard, it is not very secure, as it does not provide e-mail authentication. Thus, e-mail spoofing is thought to be a simple process. It is most often done by changing the name or e-mail address that appears in the header section of the e-mail to make it look as though it came from an authoritative source. More complex forms generally consist of the spammer manipulating certain information and sending e-mails through open relay SMTP servers.


A spammer may use e-mail spoofing for several reasons. In many cases, fraudulent e-mails are sent to obtain personal information, such as passwords or credit card numbers. They may also contain malicious material, such as viruses. Phishing e-mails, or those sent to obtain personal information, may claim that the user must change his or her password on a certain Web site or may state that the user's bank urgently requires an update on personal information, such as credit card or checking account routing numbers. Malicious e-mail spoofs can contain viruses that are either destructive to the user's computer or help the spammer acquire information about the user's e-mail habits, sensitive documents, or e-mail contacts.

Although it can be difficult to detect e-mail spoofing in some cases, certain clues often can indicate that the e-mail received has been forged. For instance, it is important to keep on eye on writing style, as most companies and Web sites have a standard way in which they relate to their users. Hovering the cursor over any links in the text is another way to see if the e-mail is legitimate. Spoof e-mails will often contain a string of numbers and letters that do not display any information pertaining to the Web site that the e-mail is claiming to be from. Researching certain header fields, such as the Return-Path or From fields, may also be necessary.


You might also Like


Discuss this Article

Post your comments

exception 'Exception' with message 'error writing captcha: Duplicate entry '2147483647' for key 'PRIMARY'' in /ssd/www/wisegeek/public_html/_core/classes/public/Captcha.php:44
Stack trace:
#0 /ssd/www/wisegeek/public_html/_core/controls/public/ControlDiscussionPostBox.php(324): Captcha->createCaptcha()
#1 /ssd/www/wisegeek/public_html/framework/classes/Control.php(104): ControlDiscussionPostBox->preRender(false)
#2 /ssd/www/wisegeek/public_html/framework/classes/Control.php(149): Control->render()
#3 /ssd/www/wisegeek/public_html/tpl/default-nocustom-lu/pages/public/article/article.htm(526): Control->__toString()
#4 /ssd/www/wisegeek/public_html/framework/classes/Control.php(300): require('/ssd/www/wisege...')
#5 /ssd/www/wisegeek/public_html/framework/classes/Control.php(309): Control->requireTpl('pages/public/ar...', Object(PageArticleCom), true)
#6 /ssd/www/wisegeek/public_html/framework/classes/Control.php(131): Control->renderTpl('pages/public/ar...', Object(PageArticleCom))
#7 /ssd/www/wisegeek/public_html/framework/classes/FormDataControl.php(87): Control->renderTemplate()
#8 /ssd/www/wisegeek/public_html/framework/classes/Control.php(109): FormDataControl->renderTemplate()
#9 /ssd/www/wisegeek/public_html/framework/classes/ScriptPage.php(50): Control->render(false)
#10 /ssd/www/wisegeek/public_html/framework/classes/Control.php(149): ScriptPage->render()
#11 /ssd/www/wisegeek/public_html/framework/classes/Page.php(97): Control->__toString()
#12 /ssd/www/wisegeek/public_html/_core/classes/public/PublicFrontController.php(443): Page->processRequest()
#13 /ssd/www/wisegeek/public_html/_core/classes/public/PublicFrontController.php(7): PublicFrontController->renderPage()
#14 /ssd/www/wisegeek/public_html/index.php(11): PublicFrontController::run()
#15 {main}