The Authenticated Received Chain, or ARC, protocol allows authentication results to be conveyed across indirect mailflows. This is intended to allow traditional services like mailing lists, content scanning, and alumni accounts that forward and/or alter messages to continue to operate in an environment where email authentication is increasingly required for timely delivery of messages, but […]
Yahoo (NASDAQ:YHOO) has been at the forefront of email authentication for over a decade, and they continue to drive the industry forward. Today, Yahoo has taken the next step in their program by publishing strong DMARC policies for 62 of their international domains, listed below. These policies will prevent phishers and spammers from using these […]
Businesses and other organizations can protect themselves from certain classes of phishing attacks on their employees by using DMARC to filter incoming email messages. But whether the company is large or small, they usually don’t have the expertise or resources to build their own filtering solution. That’s why commercial email gateways that support DMARC are […]
Each year since the DMARC protocol was first announced, more and more companies have found that it can help them monitor and protect email using their domains. Here are some notable companies or brands that began doing so in 2015, according to data provided by DMARC.org sponsor Farsight Security. Aflac (insurance) American Express (finance) † […]
Product managers and engineers from some of the world’s largest mailbox providers recently got together to explain coming changes in email authentication at an industry conference. While we can’t share all that was said, we did get permission to share their combined best practice recommendations, which will work as well for a small business as […]
From arc-spec.org: On February 19th representatives from AOL (NYSE:VZ) and Google (NASDAQ:GOOG) successfully tested the first two implementations of the ARC protocol at an interoperability event. LinkedIn (NYSE:LNKD) hosted the in-person, all-day event at their San Francisco offices and facilitated the testing. Also participating were representatives from Cloudmark, Comcast (NASDAQ:CMCSA), DMARC.org, the Trusted Domain Project, […]
Often when people first hear about DMARC, their immediate reaction is, “That’s great! Who’s using it?” That’s a good question, because DMARC can only prevent fraudulent email from reaching inboxes when both senders and receivers have implemented it. Checking Senders For convenience, we’ve collected a sample of notable organizations or domains that have published DMARC […]
Berkeley, California – February 16, 2016 – As DMARC enters its fifth year as an open standard, leading organizations increasingly rely on Domain-based Authentication, Reporting & Conformance (DMARC) to protect their customers from email fraud that impersonates their domains. In 2016, DMARC.org will continue to promote increased use of email authentication to protect consumers, and advocate the […]
We love to give clever names to the threats we face. 419 scams. Spear phishing. Snowshoe attacks. And now we’ve been gifted with the term “artisanal spam” to go with our $6 cone filter coffee and $8 wood-fired croissant with cruelty-free butter and locally grown preserves. At least the latest trendy name has some trendy […]
Before the December holidays, Lead Product Manager John Rae-Grant of Google/GMail and Executive Director Steven Jones of DMARC.org took part in a question and answer session about changes during 2015 around email authentication. The session was hosted by Agari’s Director of Product Management Mike Jones, and is available for replay at your convenience. Go to […]