Recently, some employees of my organization received couple of phishing email from internal email addresses. I found out that
spoofed messages may originate from someone or somewhere other than the actual address. However, they thought that they had to click on the link which hacker sent since the sender is valid. However, I could see any solution to prevent these dangerous emails.
Please let me know if I should configure something in Exchange Server to block this kind of threat.