Display Name Spoofing Policy

Effective October 1st, 2023

Due to an increased number of phishing emails, we have revised our display name spoofing policy. Our goal for this updated policy is to prevent cybercriminals, as much as we are reasonably able to, from impersonating Beach Church staff members to protect our organization and the community we serve.

 
 

Beach Church Display Name Spoofing Policy

to prevent cybercriminals from impersonating Beach Church staff members, our policy is to quarantine all emails that originate from outside our organization and match the display name of users inside our organization.

If the display name, the first and last name in the from field, on an incoming email matches a user in our organization, but the sender’s actual address does not match the email we have on file, the message will be intercepted and delivered to hosted quarantine. The intended recipient will not receive any notifications that a message has been quarantined.

Once quarantined, an administrator will review the message to determine if it is a phishing attack. Only administrators will receive notifications about quarantined messages.

  • If the message appears to be phishing, the message will be deleted from quarantine and reported to the proper authorities.

  • If the message is not phishing, it will be released to the intended recipients inbox.

This review process can take up to two business days.


Here’s an example of a spoofed email:

An email is received claiming to be from Jerry Sweat.

The name for the sender shows as Jerry Sweat, but the actual email address is pastor123@gmail.com.

Jerry Sweat is a user in our organization, but gmail.com is from outside our organization, so the email is quarantined.

An administrator reviews the message to determine if it is a phishing attack.


Here’s an example of a legitimate email:

An email is received claiming to be from Jerry Sweat.

The name for the sender shows as Jerry Sweat, and the actual email address is Jerry.Sweat@BeachChurchJax.com.

Jerry Sweat is a user in our organization, and BeachChurchJax.com is from inside our organization, so the email is delivered to the recipient.

 
 

If you have questions about this policy or display name spoofing, please email Support@BeachChurchJax.com.

Support at Beach Church exists to be the center of Operations Support.