Whitepapers & Ebooks

Is Your Email Authentication Technology REALLY Automated?

Learn the under-the-hood mechanics that make email authentication work, and why true automation is key to success.

DMARC Records in a .GOV World: You've Created a DMARC Record...Now What?

Learn about the multi-step process for DMARC compliance and what it takes to get it right for your agency.

Operationalizing Email Authentication: A Systematic Approach to Email Authentication

A six-step approach to operationalizing email authentication (DMARC enforcement) to manage the project across your org.

Understanding DMARC Alignment: How to Stop Email Impersonation Attacks

Well-designed phish are indistinguishable from legitimate email. Learn how DMARC at enforcement protects against impersonation attacks through three mechanisms: alignment, reporting, and conformance.

Building a Scalable, Service-Centric Sender Policy Framework (SPF) System

Configuring the Sender Policy Framework doesn't need to be difficult, time-consuming, and error-prone.

Executive FAQs

In this FAQ, we address many common questions that will help you understand why you need email authentication, how it works with your other internal security systems, and how it can provide protection across your organization.

(Primer) A Next-Generation Approach to Email Authentication

Current approaches to email authentication have difficulty reaching the end-goal of DMARC enforcement.  This primer gives executives insight into a better way of getting there via an automated DMARC enforcement platform that never touches their organizations' DNS.

What is Email Authentication?

Email authentication standards enable any mail server, anywhere, to verify that an email with your domain in the “From” address has been authorized to send in your name. Email authentication is extremely powerful, but it requires careful configuration of DNS, intimate knowledge of the email infrastructure of thousands of sending services (in order to resolve potential … Continued

What is DMARC?

DMARC (Domain-based Message Authentication, Reporting and Conformance) is a widely-accepted open standard that ensures only authorized senders can use your domain in the From: field of their email messages. DMARC builds on two earlier email authentication standards, SPF and DKIM.

A Next-Generation Approach to Email Authentication

Valimail solves some of the biggest problems in today's cloud-based email ecosystem. This high-level summary outlines the business value and explains features and benefits.

Case Studies

NH-ISAC Member Minute w/Alexander García-Tobar

Join Valimail CEO, Alexander García-Tobar, for an NH-ISAC Member Minute.


Learn how VTS, one of the hottest SaaS companies in the commercial real estate space in New York City, blocked spear phishing directed at executives with Valimail.


Learn how the technical staff at Yelp conquered the SPF 10-lookup limit.

City National Bank

When user training is not enough


Protecting your email is protecting your brand

Reports & Webinars

Valimail Industry Report: Federal Contractors

The top 100 contractors to the federal government are not covered by the same cybersecurity requirements as the agencies they serve, but it appears that they have embraced some of the same directives.

[Webinar] Real-World Ways to Fight Phishing

Join Shehzad Mirza from the Global Cyber Alliance and Alexander García-Tobar from Valimail to learn how to fight phishing attacks.

Valimail Health Care Industry Report

In this 8-page report packed with original data and analysis, you’ll find out just how vulnerable the global health industry is to being spoofed by fraudulent email.

[Webinar] You've Started a DMARC Record...Now What?

If you are like so many IT and cybersecurity managers today, you’re rightfully fed up with the inherent untrustworthiness of email. And you know that getting DMARC to enforcement will shut down any impersonation attacks using your domain. Join William Stephens, VP of Product at Valimail, as he discusses the value of email authentication, what … Continued

Email Fraud Landscape, Q1 2018

In the latest quarterly update of the Email Fraud Landscape, Valimail takes a look at the state of email impersonation, email fraud, email authentication, and more.

[Webinar] What is BOD 18-01? How to Achieve Compliance

In this webinar, you will learn more about what the DHS BOD 18-01 mandates (STARTTLS, DMARC, HTTPS) and how to achieve enforcement and compliance to protect your staff, partners, and the American public.

[Webinar] Why is Everyone Talking About Email Authentication?

In this webinar, we will look at an important new layer to email security - the authentication of senders. Implemented properly, DMARC can prevent serious fraud attacks, closing one of the most damaging and pernicious email attack vectors.

Valimail Media Industry Report

10 pages of data and analysis, revealing just how vulnerable global media and news organizations are to being spoofed by fraudulent email.

So You've Started a DMARC Record... Now What?

If you’re like so many IT and cybersecurity managers today, you’re rightfully fed up with the inherent untrustworthiness of email.  This eBook outlines the journey from DMARC Monitoring to Enforcement in an accessible and entertaining way.

Insider's Guide to Email Authentication

Without authentication it is impossible to be sure that the sender of a message is really who they appear to be, leaving organizations open to email impersonation attacks and shadow email. This is where DMARC can help. When DMARC is configured properly, domain owners ensure only authorized services can send on their behalf and can … Continued