Detecting and Combating Malicious Email

Malicious email is, simply put, email with a malicious purpose. The malicious purpose could be fraud, theft, espionage, or malware injection. The processes by which email execute the malicious activity vary widely, from fully manual (e.g. human-directed) to fully automated. One example of a malicious email is one that contains an attachment which the recipient is directed to open. When the attachment is opened, malicious software is installed on the recipient’s computer. Because malicious email can vary so broadly in form and function, automated detection is only marginally helpful. The education of all users to detect potential malicious email is important to containing the threat and limiting the damage. It is increasingly necessary for all email users to understand how to recognize and combat malicious email.

Detecting and Combating Malicious Email describes the different types of malicious email, shows how to differentiate malicious email from benign email, and suggest protective strategies for both personal and enterprise email environments.

Discusses how and why malicious e-mail is usedExplains how to find hidden viruses in e-mailsProvides hands-on concrete steps to detect and stop malicious e-mail before it is too lateCovers what you need to do if a malicious e-mail slips through

Chapter 1: From annoying to dangerous: understanding malicious email

Chapter 2: Thinking Like the Enemy

Chapter 3: Inside Email: making the hidden visible

Chapter 4: The Importance of Good Security Tools, and Limitations

Chapter 5: Steps to Detect and Combat Malicious Email

Chapter 6: What to do if one slips through