V tomto \u010dl\u00e1nku sa budeme zaobera\u0165 hlavn\u00e9 hrozby v elektronickej po\u0161te, k\u013e\u00fa\u010dov\u00e1 \u00faloha overovania a sp\u00f4sob, ak\u00fdm MasterBase\u00ae zabezpe\u010duje bezpe\u010dnos\u0165 a efekt\u00edvnos\u0165 podnikovej po\u0161ty<\/strong>.<\/p>\n\n\n\n \ud83d\udce9<\/strong> 1. Phishing: naj\u010dastej\u0161\u00ed podvod<\/strong><\/p>\n\n\n\n Phishing je met\u00f3da \u00fatoku, pri ktorej sa kyberzlo\u010dinci vyd\u00e1vaj\u00fa za d\u00f4veryhodn\u00e9 spolo\u010dnosti alebo jednotlivcov, aby pou\u017e\u00edvate\u013eov oklamali a prin\u00fatili ich ukradn\u00fa\u0165 poverovacie \u00fadaje alebo citliv\u00e9 \u00fadaje.<\/p>\n\n\n\n \ud83d\udd39 Pr\u00edklad:<\/strong> E-mail, ktor\u00fd sa tv\u00e1ri ako e-mail od banky a \u017eiada v\u00e1s o aktualiz\u00e1ciu prihlasovac\u00edch \u00fadajov pomocou podvodn\u00e9ho odkazu.<\/p>\n\n\n\n \ud83c\udfaf<\/strong> 2. Spear Phishing: cielen\u00e9 \u00fatoky<\/strong><\/p>\n\n\n\n Na rozdiel od hromadn\u00e9ho phishingu sa spear phishing zameriava na konkr\u00e9tne osoby a vyu\u017e\u00edva personalizovan\u00e9 inform\u00e1cie, aby bol podvod presved\u010divej\u0161\u00ed.<\/p>\n\n\n\n \ud83d\udd39 Pr\u00edklad:<\/strong> Zamestnanec dostane falo\u0161n\u00fd e-mail, v ktorom gener\u00e1lny riadite\u013e \u00fadajne \u017eiada o urgentn\u00e9 prevody alebo pr\u00edstup k d\u00f4vern\u00fdm inform\u00e1ci\u00e1m.<\/p>\n\n\n\n \ud83d\udcbc<\/strong> 3. Kompromit\u00e1cia firemnej elektronickej po\u0161ty (BEC): Podvody vo firm\u00e1ch<\/strong><\/p>\n\n\n\n \u00dato\u010dn\u00edci kompromituj\u00fa legit\u00edmne firemn\u00e9 e-mailov\u00e9 konto a pou\u017e\u00edvaj\u00fa ho na odosielanie podvodn\u00fdch pokynov zamestnancom alebo dod\u00e1vate\u013eom.<\/p>\n\n\n\n \ud83d\udd39 Pr\u00edklad:<\/strong> Kyberzlo\u010dinec sa vyd\u00e1va za finan\u010dn\u00e9 oddelenie a odo\u0161le e-mail so \u017eiados\u0165ou o platbu na podvodn\u00fd \u00fa\u010det.<\/p>\n\n\n\n \ud83e\udda0<\/strong> 4. Malv\u00e9r a ransomv\u00e9r v pr\u00edloh\u00e1ch<\/strong><\/p>\n\n\n\n Mnoh\u00e9 \u00fatoky za\u010d\u00ednaj\u00fa zdanlivo ne\u0161kodnou pr\u00edlohou, ktor\u00e1 po otvoren\u00ed nain\u0161taluje do syst\u00e9mu obete \u0161kodliv\u00fd softv\u00e9r alebo ransomv\u00e9r.<\/p>\n\n\n\n \ud83d\udd39 Pr\u00edklad:<\/strong> Zamestnanec dostane s\u00fabor programu Word so \u0161kodliv\u00fdmi makrami, ktor\u00e9 do firemnej siete nain\u0161taluj\u00fa ransomv\u00e9r.<\/p>\n\n\n\n Na zmiernenie t\u00fdchto riz\u00edk je nevyhnutn\u00e9 overovanie e-mailov a zabr\u00e1nenie tret\u00edm stran\u00e1m v podvrhnut\u00ed firemn\u00fdch dom\u00e9n.<\/strong>. V tomto pr\u00edpade vstupuj\u00fa do hry tri k\u013e\u00fa\u010dov\u00e9 protokoly:<\/p>\n\n\n\n \ud83d\udd39<\/strong> SPF (Sender Policy Framework): prv\u00fd filter d\u00f4veryhodnosti<\/strong><\/p>\n\n\n\n SPF zabra\u0148uje kyberzlo\u010dincom posiela\u0165 e-maily z falo\u0161nej dom\u00e9ny t\u00fdm, \u017ee overuje, ktor\u00e9 servery s\u00fa opr\u00e1vnen\u00e9 posiela\u0165 e-maily v mene spolo\u010dnosti.<\/p>\n\n\n\n \ud83d\udd39 Pr\u00edklad:<\/strong> Ak dostanete e-mail z dom\u00e9ny va\u0161ej banky, SPF skontroluje, \u010di bol skuto\u010dne odoslan\u00fd z autorizovan\u00e9ho servera.<\/p>\n\n\n\n \ud83d\udd39<\/strong> DKIM (DomainKeys Identified Mail): Digit\u00e1lny podpis pre e-mail<\/strong><\/p>\n\n\n\n DKIM prid\u00e1va vrstvu zabezpe\u010denia t\u00fdm, \u017ee ku ka\u017ed\u00e9mu odoslan\u00e9mu e-mailu pripoj\u00ed jedine\u010dn\u00fd digit\u00e1lny podpis, ktor\u00fd zaru\u010duje, \u017ee spr\u00e1va nebola po\u010das prenosu zmenen\u00e1.<\/p>\n\n\n\n \ud83d\udd39 Pr\u00edklad:<\/strong> Ak sa hacker pok\u00fasi upravi\u0165 e-mail na ceste do va\u0161ej schr\u00e1nky, DKIM ho odhal\u00ed a zablokuje.<\/p>\n\n\n\n \ud83d\udd39<\/strong> DMARC (Domain-based Message Authentication, Reporting & Conformance): Posledn\u00e1 l\u00ednia obrany<\/strong><\/p>\n\n\n\n DMARC sa spolieha na SPF a DKIM pri rozhodovan\u00ed o tom, ako zaobch\u00e1dza\u0165 s podozriv\u00fdmi e-mailami a predch\u00e1dza\u0165 phishingov\u00fdm a podvrhnut\u00fdm \u00fatokom. Poskytuje tie\u017e spr\u00e1vy o pokusoch o phishing.<\/p>\n\n\n\n \ud83d\udd39 Pr\u00edklad:<\/strong> Ak sa \u00fato\u010dn\u00edk pok\u00fasi odosla\u0165 falo\u0161n\u00e9 e-maily z firemnej dom\u00e9ny, DMARC m\u00f4\u017ee tieto e-maily odmietnu\u0165 alebo ich ozna\u010di\u0165 ako spam.<\/p>\n\n\n\n Bez n\u00e1le\u017eitej ochrany, ako s\u00fa SPF, DKIM a DMARC, je ve\u013emi jednoduch\u00e9 podvrhn\u00fa\u0165 e-mail a predstiera\u0165, \u017ee poch\u00e1dza od legit\u00edmnej a d\u00f4veryhodnej spolo\u010dnosti.<\/strong><\/strong><\/p>\n\n\n\n Zdokumentovan\u00fd pr\u00edpad dokazuje nasledovn\u00e9:<\/p>\n\n\n\n M\u00f4\u017eu SPF, DKIM a DMARC \u00faplne zabr\u00e1ni\u0165 phishingu? Nie \u00faplne.<\/strong> Av\u0161ak, Protokoly SPF, DKIM a DMARC zabra\u0148uj\u00fa \u00fato\u010dn\u00edkom odosiela\u0165 po\u0161tu pomocou skuto\u010dnej dom\u00e9ny spolo\u010dnosti bez autoriz\u00e1cie.<\/strong>T\u00fdm sa zabr\u00e1ni priamemu vyd\u00e1vaniu sa za niekoho in\u00e9ho a ochr\u00e1ni sa dobr\u00e9 meno zna\u010dky.<\/p>\n\n\n\n Tieto technol\u00f3gie maj\u00fa z\u00e1sadn\u00fd v\u00fdznam pre budovanie bezpe\u010dnej\u0161ieho digit\u00e1lneho prostredia. Bez nich m\u00f4\u017eu \u00fato\u010dn\u00edci \u013eahko zneu\u017ei\u0165 d\u00f4veru v zna\u010dku a oklama\u0165 zamestnancov, z\u00e1kazn\u00edkov alebo partnerov.<\/p>\n\n\n\n Na str\u00e1nke MasterBase\u00ae<\/strong>Ch\u00e1peme, \u017ee overovanie e-mailov je nevyhnutn\u00e9 na ochranu na\u0161ich z\u00e1kazn\u00edkov pred \u00fatokmi a na zlep\u0161enie doru\u010dite\u013enosti ich kampan\u00ed.<\/p>\n\n\n\n \u2714 Od v\u0161etk\u00fdch na\u0161ich z\u00e1kazn\u00edkov vy\u017eadujeme spr\u00e1vnu konfigur\u00e1ciu SPF, DKIM a DMARC.<\/strong> pred odoslan\u00edm, \u010d\u00edm sa zabezpe\u010d\u00ed, \u017ee va\u0161e e-maily s\u00fa legit\u00edmne a pr\u00eddu do schr\u00e1nky.
\n\n\n\nNaj\u010dastej\u0161ie e-mailov\u00e9 hrozby<\/strong><\/h2>\n\n\n\n
\n\n\n\nK\u013e\u00fa\u010dov\u00e1 \u00faloha SPF, DKIM a DMARC v zabezpe\u010den\u00ed e-mailov<\/strong><\/h2>\n\n\n\n
\n\n\n\nPr\u00edklad fal\u0161ovania e-mailovej adresy<\/strong><\/h2>\n\n\n\n
\n
Pou\u017e\u00edvate\u013eov je st\u00e1le mo\u017en\u00e9 oklama\u0165 pou\u017eit\u00edm vizu\u00e1lne podobn\u00fdch adries (napr. customer-amazon.com, Linkedln.com s mal\u00fdm p\u00edsmenom \"L\" namiesto \"i\" alebo service-dashlane.com). Tieto varianty je \u0165a\u017ek\u00e9 odhali\u0165 vo\u013en\u00fdm okom.<\/p>\n\n\n\n
\n\n\n\nMasterBase\u00ae a zabezpe\u010denie e-mailu<\/strong><\/h2>\n\n\n\n
\u2714 Poskytujeme podrobn\u00fa podporu a poradenstvo<\/strong> pom\u00f4c\u0165 na\u0161im z\u00e1kazn\u00edkom jednoducho konfigurova\u0165 tieto protokoly.
\u2714 Neust\u00e1le monitorujeme pokusy o phishing.<\/strong> posilni\u0165 bezpe\u010dnos\u0165 a zabr\u00e1ni\u0165 podvodom.<\/p>\n\n\n\n
![\"MB](\"https:\/\/i0.wp.com\/masterbase.com\/es\/es\/es\/wp-content\/uploads\/2025\/01\/labs-1024x281.png?resize=800%2C220&ssl=1\")
<\/a><\/figure>\n\n\n\n