To block emails spoofing a specific email address or domain, you will need to first approve the sender. This is because when you want to block unauthorized emails from a given sender, that generally means that you do want to receive legitimate emails from that sender.
Why can't I just flip a switch and block all spoofed messages?
Some valid messages offer no method of authentication at all, which makes it impossible to determine with certainty that a given email came from their domain or not. A majority of domains that implement DMARC have their policy set to "none", which essentially means that they are not confident that their own legitimate messages will consistently pass their own authentication.
That's why SpamHero allows you to identify sending patterns, so you can block spoofed messages even when the sending domain is lacking a consistent authentication method.