spoofing of display name will replace the "actual" email address after opening twice
I changed the display name in my ***@gmail.com account to my professional yahoo account name "MyName mycompany@mydomain.com" and sent it to our yahoo hosted company email.
This is to simulate a phishing attack. When opened for the FIRST TIME the email will show the display name spoofing correctly. however opening the email a second time will replace the actual email address of the phisher/spoofer to the email address in the display name.
This is a worrisome vulnerability as a spoofer can overlap the actual email address by intentional changing the display name.
203rd
ranked
ccventura .
shared this idea