Australian Government Agency Recommends DMARC, DKIM, and SPF

In July the Australian Signals Directorate, part of the Department of Defence, and the Australian Cyber Security Centre issued a report for IT professionals titled, Malicious Email Mitigation Strategies. The report recommends the most effective methods of protecting organizations from email-borne attacks, and includes deploying DKIM, DMARC, and SPF. Furthermore it recommends using DMARC with […]

DMARC Required For UK Government Services By October 1st

Government Digital Service (GDS), part of the United Kingdom’s Cabinet Office, is requiring that other government departments adopt DMARC and HTTPS/HSTS to protect their online services by October 1st, 2016. This includes making the strongest DMARC policy (“p=reject”) the default for email services at that time. This will apply to all services operating under the service.gov.uk […]

Eleven Commercial Email Gateways Support DMARC

Businesses and other organizations can protect themselves from certain classes of phishing attacks on their employees by using DMARC to filter incoming email messages. But whether the company is large or small, they usually don’t have the expertise or resources to build their own filtering solution. That’s why commercial email gateways that support DMARC are […]

25 Leading Companies That Began Using DMARC in 2015

Each year since the DMARC protocol was first announced, more and more companies have found that it can help them monitor and protect email using their domains. Here are some notable companies or brands that began doing so in 2015, according to data provided by DMARC.org sponsor Farsight Security. Aflac (insurance) American Express (finance) † […]

Best Authentication Practices for Email Senders

Product managers and engineers from some of the world’s largest mailbox providers recently got together to explain coming changes in email authentication at an industry conference. While we can’t share all that was said, we did get permission to share their combined best practice recommendations, which will work as well for a small business as […]

Two ARC Implementations Tested At Interoperability Event

From arc-spec.org: On February 19th representatives from AOL (NYSE:VZ) and Google (NASDAQ:GOOG) successfully tested the first two implementations of the ARC protocol at an interoperability event. LinkedIn (NYSE:LNKD) hosted the in-person, all-day event at their San Francisco offices and facilitated the testing. Also participating were representatives from Cloudmark, Comcast (NASDAQ:CMCSA), DMARC.org, the Trusted Domain Project, […]

How Can I Tell Who is Using DMARC?

Often when people first hear about DMARC, their immediate reaction is, “That’s great! Who’s using it?” That’s a good question, because DMARC can only prevent fraudulent email from reaching inboxes when both senders and receivers have implemented it. Checking Senders For convenience, we’ve collected a sample of notable organizations or domains that have published DMARC […]

As Email Fraud Diversifies, DMARC Protects Employees and Consumers

Berkeley, California – February 16, 2016 – As DMARC enters its fifth year as an open standard, leading organizations increasingly rely on Domain-based Authentication, Reporting & Conformance (DMARC) to protect their customers from email fraud that impersonates their domains. In 2016, DMARC.org will continue to promote increased use of email authentication to protect consumers, and advocate the […]

Instructional DMARC videos from Dmarcian

DMARC report processor Dmarcian.com has made a series of videos about DMARC and email authentication available on their website. There is no charge to view the nine videos, which are based on presentations Dmarcian has developed and offered over the past several years. You can find all nine videos here: https://space.dmarcian.com/videos-on-all-things-dmarc