BAS is continually seeking to enhance its security posture. Recently, BAS implemented a new email policy aimed at eliminating the potential impact of spoofing and spear phishing.
BAS no longer permits the use of the “reply” or “reply-all” email functions. Instead of “replying” to an email, employees are instructed to “forward” the email and type in the recipient(s) email address(es). Not allowing the ability to “reply” or “reply-all" to a message is intended to (a) lessen the chances of sending a message to unintended people, and (b) prevent responding to a spoofed email address.