We have noticed a significant increase in a specific type of phishing attack. The email has a display of someone in our company, usually someone important. The subject line is sometimes frighteningly accurate in that it is something that the user might very well put in his/her subject line that relates to his/her work. It is clear, with even a quick scan, that these are spoofed, as the email addresses associated with the username are clearly bogus. But the combination of an authentic looking username and Subject line sometimes fools people. Is there some way to flag/block emails that use a display name of someone in my company but comes from outside the company?
Funny thing is, when I search on the spoofed display name, nothing comes up. Actually, there is no way to search on a display name. I search on the Username field, but that never returns anything.
Thanks for nay help with this.