This topic https://community.bt.com/t5/Archive-Staging/Scam-emails/m-p/2198674#M1258242 <P>The latest scam emails spoof a from address example from source data:-</P><P>spoof header.from=accountprotection.microsoft.com</P><P>actually from smtp.mailfrom=Stromarkt.onmicrosoft.com;</P><P>However if you block via BT email it blocks the spoofed address and domain.&nbsp;<BR />The only option is to manually add *@Stromarkt.onmicrosoft.com but of course they just send from a different address e.g.&nbsp;@different.onmicrosoft.com.</P><P>1. BT email should use the source data to present the real address on the mail view it has complete access to it&nbsp; and block that address not the spoofed one.&nbsp; When I realised what had been happening it was too late to benefit from offers etc. because the domains had been blocked.</P><P>2. There needs to be an option to block from the the last but one dot of the actual domain e.g. *onmicrosoft.com even in manually blocking senders there is no option for this and you can only block from the&nbsp;@ as above.</P><P>To me it is unbelievable that non of their own systems pick this up and that BT protect(mcafee) fails as well.</P><P>&nbsp;</P> Sat, 04 Dec 2021 09:38:41 GMT JerryT 2021-12-04T09:38:41Z Scam emails https://community.bt.com/t5/Archive-Staging/Scam-emails/m-p/2198674#M1258242 <P>The latest scam emails spoof a from address example from source data:-</P><P>spoof header.from=accountprotection.microsoft.com</P><P>actually from smtp.mailfrom=Stromarkt.onmicrosoft.com;</P><P>However if you block via BT email it blocks the spoofed address and domain.&nbsp;<BR />The only option is to manually add *@Stromarkt.onmicrosoft.com but of course they just send from a different address e.g.&nbsp;@different.onmicrosoft.com.</P><P>1. BT email should use the source data to present the real address on the mail view it has complete access to it&nbsp; and block that address not the spoofed one.&nbsp; When I realised what had been happening it was too late to benefit from offers etc. because the domains had been blocked.</P><P>2. There needs to be an option to block from the the last but one dot of the actual domain e.g. *onmicrosoft.com even in manually blocking senders there is no option for this and you can only block from the&nbsp;@ as above.</P><P>To me it is unbelievable that non of their own systems pick this up and that BT protect(mcafee) fails as well.</P><P>&nbsp;</P> Sat, 04 Dec 2021 09:38:41 GMT https://community.bt.com/t5/Archive-Staging/Scam-emails/m-p/2198674#M1258242 JerryT 2021-12-04T09:38:41Z