V tomto \u010dl\u00e1nku se budeme zab\u00fdvat hlavn\u00ed hrozby v e-mailu, kl\u00ed\u010dovou roli ov\u011b\u0159ov\u00e1n\u00ed a zp\u016fsob, jak\u00fdm MasterBase\u00ae zaji\u0161\u0165uje bezpe\u010dnost a efektivitu firemn\u00edch z\u00e1silek.<\/strong>.<\/p>\n\n\n\n \ud83d\udce9<\/strong> 1. Phishing: nej\u010dast\u011bj\u0161\u00ed podvody<\/strong><\/p>\n\n\n\n Phishing je metoda \u00fatoku, p\u0159i n\u00ed\u017e se kyberzlo\u010dinci vyd\u00e1vaj\u00ed za d\u016fv\u011bryhodn\u00e9 spole\u010dnosti nebo jednotlivce, aby u\u017eivatele oklamali a p\u0159im\u011bli je ke kr\u00e1de\u017ei p\u0159ihla\u0161ovac\u00edch \u00fadaj\u016f nebo citliv\u00fdch dat.<\/p>\n\n\n\n \ud83d\udd39 P\u0159\u00edklad:<\/strong> E-mail, kter\u00fd se tv\u00e1\u0159\u00ed jako od banky a \u017e\u00e1d\u00e1 v\u00e1s o aktualizaci p\u0159ihla\u0161ovac\u00edch \u00fadaj\u016f pomoc\u00ed podvodn\u00e9ho odkazu.<\/p>\n\n\n\n \ud83c\udfaf<\/strong> 2. Spear Phishing: c\u00edlen\u00e9 \u00fatoky<\/strong><\/p>\n\n\n\n Na rozd\u00edl od hromadn\u00e9ho phishingu se spear phishing zam\u011b\u0159uje na konkr\u00e9tn\u00ed osoby a pou\u017e\u00edv\u00e1 osobn\u00ed informace, aby byl podvod p\u0159esv\u011bd\u010div\u011bj\u0161\u00ed.<\/p>\n\n\n\n \ud83d\udd39 P\u0159\u00edklad:<\/strong> Zam\u011bstnanec obdr\u017e\u00ed fale\u0161n\u00fd e-mail, ve kter\u00e9m gener\u00e1ln\u00ed \u0159editel \u00fadajn\u011b \u017e\u00e1d\u00e1 o urgentn\u00ed p\u0159evody nebo p\u0159\u00edstup k d\u016fv\u011brn\u00fdm informac\u00edm.<\/p>\n\n\n\n \ud83d\udcbc<\/strong> 3. Kompromitace firemn\u00edch e-mail\u016f (BEC): Podvody ve firm\u00e1ch<\/strong><\/p>\n\n\n\n \u00dato\u010dn\u00edci napadnou legitimn\u00ed firemn\u00ed e-mailov\u00fd \u00fa\u010det a pou\u017eij\u00ed jej k odesl\u00e1n\u00ed podvodn\u00fdch pokyn\u016f zam\u011bstnanc\u016fm nebo dodavatel\u016fm.<\/p>\n\n\n\n \ud83d\udd39 P\u0159\u00edklad:<\/strong> Kyberzlo\u010dinec se vyd\u00e1v\u00e1 za finan\u010dn\u00ed odd\u011blen\u00ed a ode\u0161le e-mail s \u017e\u00e1dost\u00ed o platbu na podvodn\u00fd \u00fa\u010det.<\/p>\n\n\n\n \ud83e\udda0<\/strong> 4. Malware a ransomware v p\u0159\u00edloh\u00e1ch<\/strong><\/p>\n\n\n\n Mnoho \u00fatok\u016f za\u010d\u00edn\u00e1 zd\u00e1nliv\u011b ne\u0161kodnou p\u0159\u00edlohou, kter\u00e1 po otev\u0159en\u00ed nainstaluje do syst\u00e9mu ob\u011bti malware nebo ransomware.<\/p>\n\n\n\n \ud83d\udd39 P\u0159\u00edklad:<\/strong> Zam\u011bstnanec obdr\u017e\u00ed soubor aplikace Word se \u0161kodliv\u00fdmi makry, kter\u00e1 do firemn\u00ed s\u00edt\u011b nainstaluj\u00ed ransomware.<\/p>\n\n\n\n Aby se tato rizika zm\u00edrnila, je nezbytn\u00e9. ov\u011b\u0159ovat e-maily a br\u00e1nit t\u0159et\u00edm stran\u00e1m v podvr\u017een\u00ed firemn\u00edch dom\u00e9n.<\/strong>. V tomto p\u0159\u00edpad\u011b vstupuj\u00ed do hry t\u0159i kl\u00ed\u010dov\u00e9 protokoly:<\/p>\n\n\n\n \ud83d\udd39<\/strong> SPF (Sender Policy Framework): Prvn\u00ed filtr d\u016fv\u011bryhodnosti<\/strong><\/p>\n\n\n\n Protokol SPF br\u00e1n\u00ed kyberzlo\u010dinc\u016fm v odes\u00edl\u00e1n\u00ed e-mail\u016f z fale\u0161n\u00e9 dom\u00e9ny t\u00edm, \u017ee ov\u011b\u0159uje, kter\u00e9 servery jsou opr\u00e1vn\u011bny odes\u00edlat e-maily jm\u00e9nem spole\u010dnosti.<\/p>\n\n\n\n \ud83d\udd39 P\u0159\u00edklad:<\/strong> Pokud obdr\u017e\u00edte e-mail z dom\u00e9ny va\u0161\u00ed banky, SPF zkontroluje, zda byl skute\u010dn\u011b odesl\u00e1n z autorizovan\u00e9ho serveru.<\/p>\n\n\n\n \ud83d\udd39<\/strong> DKIM (DomainKeys Identified Mail): Digit\u00e1ln\u00ed podpis pro e-mail.<\/strong><\/p>\n\n\n\n DKIM p\u0159id\u00e1v\u00e1 vrstvu zabezpe\u010den\u00ed t\u00edm, \u017ee ke ka\u017ed\u00e9mu odeslan\u00e9mu e-mailu p\u0159ipojuje jedine\u010dn\u00fd digit\u00e1ln\u00ed podpis, kter\u00fd zaru\u010duje, \u017ee zpr\u00e1va nebyla p\u0159i p\u0159enosu zm\u011bn\u011bna.<\/p>\n\n\n\n \ud83d\udd39 P\u0159\u00edklad:<\/strong> Pokud se hacker pokus\u00ed upravit e-mail na cest\u011b do va\u0161\u00ed schr\u00e1nky, DKIM to odhal\u00ed a zablokuje.<\/p>\n\n\n\n \ud83d\udd39<\/strong> DMARC (Domain-based Message Authentication, Reporting & Conformance): Posledn\u00ed linie obrany<\/strong><\/p>\n\n\n\n DMARC se spol\u00e9h\u00e1 na SPF a DKIM, kter\u00e9 rozhoduj\u00ed o tom, jak zach\u00e1zet s podez\u0159el\u00fdmi e-maily, a zabra\u0148uj\u00ed phishingov\u00fdm a podvr\u017een\u00fdm \u00fatok\u016fm. Poskytuje tak\u00e9 zpr\u00e1vy o pokusech o phishing.<\/p>\n\n\n\n \ud83d\udd39 P\u0159\u00edklad:<\/strong> Pokud se \u00fato\u010dn\u00edk pokus\u00ed odeslat fale\u0161n\u00e9 e-maily z firemn\u00ed dom\u00e9ny, m\u016f\u017ee DMARC tyto e-maily odm\u00edtnout nebo je ozna\u010dit jako spam.<\/p>\n\n\n\n Bez \u0159\u00e1dn\u00e9 ochrany, jako jsou SPF, DKIM a DMARC, je velmi snadn\u00e9 podvrhnout e-mail a p\u0159edst\u00edrat, \u017ee poch\u00e1z\u00ed od legitimn\u00ed a d\u016fv\u011bryhodn\u00e9 spole\u010dnosti.<\/strong><\/strong><\/p>\n\n\n\n Zdokumentovan\u00fd p\u0159\u00edpad dokl\u00e1d\u00e1 n\u00e1sleduj\u00edc\u00ed:<\/p>\n\n\n\n Dok\u00e1\u017eou protokoly SPF, DKIM a DMARC zcela zabr\u00e1nit phishingu? Ne zcela.<\/strong> Nicm\u00e9n\u011b, Protokoly SPF, DKIM a DMARC br\u00e1n\u00ed \u00fato\u010dn\u00edk\u016fm odes\u00edlat po\u0161tu pomoc\u00ed skute\u010dn\u00e9 dom\u00e9ny spole\u010dnosti bez autorizace.<\/strong>T\u00edm se zabr\u00e1n\u00ed p\u0159\u00edm\u00e9mu vyd\u00e1v\u00e1n\u00ed se za n\u011bkoho jin\u00e9ho a ochr\u00e1n\u00ed se pov\u011bst zna\u010dky.<\/p>\n\n\n\n Tyto technologie maj\u00ed z\u00e1sadn\u00ed v\u00fdznam pro budov\u00e1n\u00ed bezpe\u010dn\u011bj\u0161\u00edho digit\u00e1ln\u00edho prost\u0159ed\u00ed. Bez nich mohou \u00fato\u010dn\u00edci snadno zneu\u017e\u00edt d\u016fv\u011bry ve zna\u010dku a oklamat zam\u011bstnance, z\u00e1kazn\u00edky nebo partnery.<\/p>\n\n\n\n Na adrese MasterBase\u00ae<\/strong>Ch\u00e1peme, \u017ee ov\u011b\u0159ov\u00e1n\u00ed e-mail\u016f je nezbytn\u00e9 pro ochranu na\u0161ich z\u00e1kazn\u00edk\u016f p\u0159ed \u00fatoky a zlep\u0161en\u00ed doru\u010ditelnosti jejich kampan\u00ed.<\/p>\n\n\n\n \u2714 Od v\u0161ech na\u0161ich z\u00e1kazn\u00edk\u016f vy\u017eadujeme spr\u00e1vnou konfiguraci SPF, DKIM a DMARC.<\/strong> p\u0159ed odesl\u00e1n\u00edm, \u010d\u00edm\u017e zajist\u00edte, \u017ee va\u0161e e-maily budou legitimn\u00ed a doraz\u00ed do schr\u00e1nky.
\n\n\n\nNej\u010dast\u011bj\u0161\u00ed e-mailov\u00e9 hrozby<\/strong><\/h2>\n\n\n\n
\n\n\n\nKl\u00ed\u010dov\u00e1 role SPF, DKIM a DMARC v zabezpe\u010den\u00ed e-mail\u016f<\/strong><\/h2>\n\n\n\n
\n\n\n\nP\u0159\u00edklad podvr\u017een\u00ed e-mailov\u00e9 adresy<\/strong><\/h2>\n\n\n\n
\n
St\u00e1le je mo\u017en\u00e9 oklamat u\u017eivatele pou\u017eit\u00edm vizu\u00e1ln\u011b podobn\u00fdch adres (nap\u0159. customer-amazon.com, Linkedln.com s mal\u00fdm p\u00edsmenem \"L\" m\u00edsto \"i\" nebo service-dashlane.com). Tyto varianty je obt\u00ed\u017en\u00e9 odhalit pouh\u00fdm okem.<\/p>\n\n\n\n
\n\n\n\nMasterBase\u00ae a zabezpe\u010den\u00ed e-mailu<\/strong><\/h2>\n\n\n\n
\u2714 Poskytujeme podrobnou podporu a poradenstv\u00ed<\/strong> abychom na\u0161im z\u00e1kazn\u00edk\u016fm pomohli tyto protokoly jednodu\u0161e nakonfigurovat.
\u2714 Pokusy o phishing pr\u016fb\u011b\u017en\u011b monitorujeme.<\/strong> pos\u00edlit zabezpe\u010den\u00ed a zabr\u00e1nit podvod\u016fm.<\/p>\n\n\n\n
![\"MB](\"https:\/\/i0.wp.com\/masterbase.com\/es\/es\/es\/wp-content\/uploads\/2025\/01\/labs-1024x281.png?resize=800%2C220&ssl=1\")
<\/a><\/figure>\n\n\n\n