Email spoofing is a phishing technique where attackers forge sender addresses to appear legitimate. Admins can combat domain spoofing by configuring DKIM and SPF records, while name spoofing from external domains can be mitigated using Exchange Online mail flow rules that add external warning disclaimers to alert recipients.