Forum Discussion
acstech1
Jan 21, 2019Copper Contributor
Why are my users getting spoofed messages when I have SPF, DMARC, DKIM enabled?
Recently, I had a user forward an email to me that was from a spoofed email account in our organization (the email was from an outside email server and had been relayed off another mail server with a...
IJN007
Dec 13, 2022Copper Contributor
Did you ever resolve this issue? It started happening to one of my users on December 12, 2022. Had never had that before, and none of my settings have been changed.
- RGijsbersRademakersDec 13, 2022Iron Contributor
Hi IJN007, as far as I know this has to do with the fact that Microsoft doesn't reject dmarc failures by default. These messages are tagged with action=oreject, which means the reject is overridden. You could bypass that behaviour as described in the following article: https://knowledge.ondmarc.redsift.com/en/articles/4612788-how-to-make-office-365-reject-emails-that-...