Cecure Intelligence Limited

CIL Support

CIL ADVISORY

Email Forwarding Risks: How Auto-Forwarding Can Leak Sensitive Information

  • MARCH 17TH, 2025
  • 1min read
Email Forwarding Risks: How Auto-Forwarding Can Leak Sensitive Information

Email auto-forwarding is a convenient feature that, when misconfigured or exploited,
inadvertently exposes sensitive information. Most times, the creation of unauthorized
auto-forwarding rules signals that an account has already been compromised. Once access is
gained, attackers can employ various techniques to maintain persistent access to the mailbox.


In December 2020,an incident in Ireland exposed the personal data of 9,735 teachers following a
phishing breach, highlighting the risks associated with such misconfigurations.

Key Risks

  • Misconfigured forwarding rules leading to unintended data exposure.
  • Unintended transmission of confidential information to external parties.
  • Lack of regular review and monitoring of forwarding settings.
  • Absence of filtering mechanisms to detect sensitive content.
  • Lack of regular audits can allow these malicious rules to persist undetected, increasing the
    risk of data leakage and compliance violations.

Prevention Measures

  • Lack of regular audits can allow these malicious rules to persist undetected, increasing the
    risk of data leakage and compliance violations.
  • Utilize Data Loss Prevention (DLP) solutions to monitor outgoing emails contents.
  • Educate employees on the risks of forwarding sensitive information.
  • Use email encryption for confidential communications.
  • Establish clear organizational policies on email handling and forwarding.

By implementing these preventive measures, companies can reduce their exposure to data leakage and risk auto-forwarding emails

Explore more CIL Advisories

Review Bombing Attacks and Extortion

Review Bombing Attacks and Extortion

IntroductionMalicious actors use "review-bombing", a coordinated flood of fake, one-star reviews as an initial step for extortion. This high volume…

NOVEMBER 26TH, 2025

Read More
Synthetic Phishing: AI-Enabled Insider Impersonation

Synthetic Phishing: AI-Enabled Insider Impersonation

IntroductionThreat actors increasingly use artificial intelligence (AI) to impersonate trusted individuals such as executives, employees, or suppliers within organisations. These…

NOVEMBER 24TH, 2025

Read More
The Silent Security Threat: Data Hoarding

The Silent Security Threat: Data Hoarding

IntroductionThe greatest risk to your organization may be the sheer volume of data we hold, a practice known as Data…

NOVEMBER 19TH, 2025

Read More

Never miss a CIL Security Advisory

Stay informed with the latest security updates and insights from CIL.

Email Forwarding Risks: How Auto-Forwarding Can Leak Sensitive Information

Contact Us

Message Sent!

Thank you for reaching out. We have received your message and will get back to you shortly.

Check your email for a confirmation from us.

Start a project

Project Request Submitted!

Thank you for your interest. Our team will review your project details and reach out to you soon.

Check your email for a confirmation from us.

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies. You can manage your preferences or learn more in our Cookie Policy .

Cookie Settings

We use cookies to improve your experience on our website. Some cookies are essential for the website to function, while others help us understand how you interact with our site. You can choose which cookies to accept below.