It has been brought to our attention that fraudulent email messages from entities that are entirely separate from the EUIPO may be in circulation. The EUIPO considers this a serious issue and would like to urge all IT specialists of Key User firms to follow the guidance below on how to detect and stop any email that is pretending to originate from the euipo.europa.eu domain:
- If the domain, euipo.europa.eu, is in any mail gateway whitelist to bypass your spam check, please remove it and enable some of the following techniques to verify mail legitimacy for our domain:
- Reverse DNS can check whether the sender’s IP address is indeed one of our mail servers declared in our MX/SPF records;
- You can use DMARC/SPF/DKIM verification (all of them are enabled in our mail gateway).
- A message containing an encrypted file must always be treated with suspicion as your antivirus engines may not be able to scan it, meaning you cannot be sure an attachment is safe. These messages should not be delivered but dropped or diverted to a quarantine instead for verification.
- The use of blacklists and reputation services could help stop illegitimate messages like this, in general, not only the ones spoofing our domain. However, if you don’t want to alter your antispam configuration, you can define a anti-spoofing rule for our domain based on previous suggestions.
Should you receive any suspicious emails we kindly request that you report them at your earliest convenience to KeyUserManagement@euipo.europa.eu