Case #174766: Status hacked by spoof-email


We've realized what would appear to be a security hole in Jive, in that someone can send an email using a spoofed From address to post a Status as someone else in our internal community.  This was done via deadfake, thought there are likely many other such resources.  We need to know how this can be avoided.


More Like This