Posts: 14,414
Threads: 9,507
Thanks Received: 9,034 in 7,184 posts
Thanks Given: 9,804
Joined: 12 September 18
07 March 19, 07:44
(This post was last modified: 07 March 19, 07:44 by harlan4096.)
Quote:![[Image: out-of-office-messages-featured.jpg]](https://media.kasperskydaily.com/wp-content/uploads/sites/92/2019/03/06102838/out-of-office-messages-featured.jpg)
Before a vacation or business trip, many employees configure an autoreply to incoming e-mails so that clients and colleagues know who to contact in their absence. Usually such messages include the duration of the trip, contact details of cover staff, and sometimes information about current projects.
Autoreplies may seem harmless, but they can be a business risk. If an employee does not restrict the list of recipients, the autoreply will go to anyone whose e-mail ends up in the Inbox folder — and it could be a cybercriminal or spammer who has managed to bypass the filters. The information in the autoreply could even be enough to carry out a targeted attack.
One line, big trouble
In the case of spammers, the autoreply lets them know that the email address is valid and belongs to a specific person. It tells them the person’s first name, last name, and position. The signature often contains a phone number, too.
Spammers usually fire out messages to addresses from a huge database, which gradually becomes outdated and less effective. But when a real person is detected at the end of the line, the cybercriminals mark them as a viable target and start mailing much more often. They may even call. But that’s far from the worst of it.
Out-of-office replies: How not to spill too many beans
![[-]](https://www.geeks.fyi/images/collapse.png)
