Filter by "DMARC"

Email’s identity crisis

Email is having an identity crisis. Although the first email was sent almost 50 years ago, the standards for Internet em...

by Dylan Tweney
October 8, 2019
Read more
Is a DMARC policy really right for everyone?

TL;DR: Yes. A recent blog post made the unusual argument that the vast majority of organizations should not try to publi...

by Valimail
October 2, 2019
Read more
If DMARC is so great, why isn’t everyone doing it?

Almost 90% of email attacks are based on fake sender identities, either of brands (83%) or individuals (6%), according t...

by Valimail
August 30, 2019
Read more
Why DMARC enforcement includes quarantine and reject

Valimail’s mission has been consistent since the day we started back in 2015: We want to keep fraudulent emails out of t...

by Peter Goldstein
August 16, 2019
Read more
Election security’s weakest link: Email

As the country dives into the 2020 election season, it’s worth taking a look at how things are progressing. The Senate I...

by Valimail
August 6, 2019
Read more
Just 17% of domains with DMARC are actually protected. Here’s why

DMARC (Domain-based Message Authentication, Reporting & Conformance) usage continues to grow. About 80% of all email...

by Dylan Tweney
July 23, 2019
Read more
What’s the easiest path to DMARC enforcement?

When it comes to protecting your domain against exact domain impersonation attacks and getting clear visibility into you...

by Gabby Williams
June 25, 2019
Read more
Progress in the global fight against fake email (Research)

Valimail has been doing rigorous analysis on the data behind email fraud since our company’s earliest days. And we’ve be...

by Dylan Tweney
June 11, 2019
Read more
Office 365 users: Get DMARC monitoring today, for free

Valimail is excited to announce that we’re partnering with Microsoft to provide an exclusive offer to users of Microsoft...

by Valimail
June 7, 2019
Read more
A step-by-step guide to getting DMARC done right [Infographic]

If implementing SPF, DKIM, and DMARC is on your list, then you also probably know that enforcement is the goal — and the...

by Gabby Williams
June 5, 2019
Read more
Why are so many companies still not protecting themselves from phishing attacks? [Video]

Email is far from dead. In fact, it’s the number one cyber attack vector. And yet, the majority of companies still haven...

by Gabby Williams
May 22, 2019
Read more
How the finance industry is getting ripped off by fake emails

Business email compromise (BEC) and phishing attacks are a major issue for companies in financial services, banking, and...

by Valimail
May 15, 2019
Read more
Presidential campaigns take first steps in fight against fake email

U.S. Presidential campaigns are still vulnerable to spoofing, an analysis by Valimail has found. However, they’re ...

by Valimail
May 10, 2019
Read more
OTA Trust Audit shows how crucial email Is to cybersecurity excellence

As a cybersecurity company focused on defending enterprises from BEC, phishing, and other fraudulent email practices, Va...

by Seth Blank
April 17, 2019
Read more
Why you need DMARC — even if you have SPF and an SEG

DMARC (Domain-based Message Authentication, Reporting, and Conformance) is a fairly new internet standard and to some, i...

by Gabby Williams
April 4, 2019
Read more
Among tech companies, DMARC and revenue are positively correlated

As part of our regular series of research reports on the state of email fraud, Valimail recently conducted an analysis f...

by Dylan Tweney
March 28, 2019
Read more
What you need to know about the PCT tag in DMARC records

We’ve been seeing an increase in the number of published DMARC records with a “pct” tag that undermines the value of DMA...

by Peter Goldstein
March 26, 2019
Read more
DMARC tags explained: What you need to know [Infographic]

We’ve talked about the only three tags you really need to successfully deploy a DMARC record, but what about the other s...

by Valimail
March 21, 2019
Read more
Email is under attack. Here’s how the world is responding

Despite its near-ubiquity, email is under attack. Email’s core protocols make no provision for authenticating the identi...

by Dylan Tweney
March 13, 2019
Read more
DMARC 101 [Infographic]

Let’s address the age-old question: What is DMARC? Ok, maybe it’s not ages old. DMARC is still in its first decade of e...

by Valimail
March 4, 2019
Read more
The five key standards of email authentication

What does it mean when someone talks about “email authentication?” It’s pretty straightforward: When an email message ha...

by Valimail
February 21, 2019
Read more
Five myths of email authentication

Email is one of the most vulnerable points in an enterprise’s cyber defenses. Multiple studies (from Proofpoint, Verizon...

by Alexander García-Tobar
February 11, 2019
Read more
What’s the real value of DMARC?

There are a lot of initiatives that fall on your team’s shoulders, so I’m sure there’s the question in the back of your ...

by Valimail
January 24, 2019
Read more
What Is DMARC enforcement — and why is it so important?

Many how-to articles tout the benefits of DMARC without mentioning a crucial step: Enforcement. A key part of the DMARC ...

by Valimail
November 7, 2018
Read more
Federal compliance with email authentication directive continues to grow

The deadline for compliance is past, but the number of federal domains protecting themselves against email impersonation...

by Valimail
October 19, 2018
Read more
Trust but verify: Untangling the web of third-party senders & DMARC

DMARC presents a host of hurdles for companies implementing it themselves. If you can navigate the first step of the enf...

by Steve Whittle
October 8, 2018
Read more
What’s your industry’s email fraud protection rate?

Valimail regularly queries many millions of domains for the presence of published DMARC and SPF records, and performs de...

by Dylan Tweney
October 5, 2018
Read more
DMARC: The only 3 tags you really need

The DMARC standard defines a number of different tags that can be used in a DMARC record. Some of these tags are require...

by Peter Goldstein
September 18, 2018
Read more
Why CMOs and CISOs should be BFFs

The needs of marketing and IT/security teams rarely overlap in a way that’s beneficial for both, but in the words of the...

by Gabby Williams
September 5, 2018
Read more
Federal agencies maintain their lead over every industry in anti-spoofing protection

In virtually every category Valimail has examined over the past year, we’ve seen a steady increase in the number of doma...

by Dylan Tweney
August 31, 2018
Read more
6.4 billion fake emails every day

Email is under attack. With no authentication built in to email’s core protocols, it has always been trivial for hackers...

by Dylan Tweney
August 22, 2018
Read more
True visibility and control with DMARC reporting

As the first application built on the Valimail Identity-Driven Email Anti-impersonation (IDEA)™ platform, Valimail Enfor...

by Garrett McCullum
August 16, 2018
Read more
This Independence Day, celebrate U.S. cybersecurity progress

It’s been almost nine months since the Department of Homeland Security issued a directive mandating that all U.S. federa...

by Dylan Tweney
July 4, 2018
Read more
How DMARC can facilitate GDPR compliance

By now, you’ve undoubtedly read a lot of stories about how one technology or another is going to provide a magic solutio...

by Seth Blank
May 31, 2018
Read more
Man bites dog? Federal government leads in DMARC adoption

It’s not every day you see clear evidence that the government is leading a technology sector. But that’s exactly what’s ...

by Valimail
April 26, 2018
Read more
Fake email threatens media companies just as much as fake news

Media companies face a uniquely difficult landscape. Over the past decade, they’ve had to adapt to rapidly changing medi...

by Dylan Tweney
February 22, 2018
Read more
U.S. senators remain vulnerable to email fraud

Trend Micro has found evidence that a Russian hacking group is attempting to break into the U.S. Senate’s email systems,...

by Alexander García-Tobar
January 17, 2018
Read more
Why credit companies and the IRS won’t send you email

Love it or hate it, email is the most ubiquitous channel for communication ever invented (apart from the telephone), rea...

by Valimail
January 3, 2018
Read more
Federal agencies making progress toward DMARC deadline

As of today, U.S. federal agencies officially have 30 days until the first major deadline from the Department of Homelan...

by Valimail
December 15, 2017
Read more
Mailsploit is “virtually unstoppable”? Not even close

News stories are popping up about Mailsploit, a supposed email spoofing technique that is “virtually unstoppable,” accor...

by Valimail
December 5, 2017
Read more
5 takeaways from an Amazon phish

Today, we saw a phish posted by Lance Spitzner, a board member of the National Cyber Security Alliance. This phishing e...

by Valimail
November 29, 2017
Read more
How to save $8.1 million every year: implement and enforce email authentication

Valimail’s second annual report on the state of the email authentication ecosystem is out, and it makes the picture cry...

by Valimail
November 21, 2017
Read more
Four weeks on, federal domains are making progress — but there’s still a long way to go

When the Department of Homeland Security directed all federal agencies to implement email authentication, it was clear t...

by Valimail
November 14, 2017
Read more
Fish and chips can’t solve a serious phishing problem

Santander Bank has been spending the past month driving a white and red van around the U.K., handing out free fish and c...

by Valimail
November 8, 2017
Read more
DHS makes a big leap forward in ensuring email security

This week, the Department of Homeland Security announced that it would begin requiring Federal agencies to implement DMA...

by Peter Goldstein
October 18, 2017
Read more
97 percent of U.S. electric companies are vulnerable to impersonation by North Korean spear phishers

North Korean hackers have been targeting U.S. electric companies via spear-phishing attacks, as NBC’s Andrea Mitchell an...

by Valimail
October 12, 2017
Read more
98% of financial services companies vulnerable to email impersonation

In April, the five largest banks in the U.S. adopted email authentication through DMARC, giving their customers, employe...

by Valimail
October 3, 2017
Read more
DMARC failure reports: What are they good for? (Absolutely nothing!)

DMARC is a powerful tool that domain owners can use to protect their domains — and thus their brands — from abuse. At en...

by Peter Goldstein
September 8, 2017
Read more
Why your company could be unprotected due to incorrect DMARC implementation

Ninety percent of security breaches start with a phishing email. The most effective type of phish — and the hardest to d...

by Dylan Tweney
September 7, 2017
Read more
Senator: Why sre Fed Agencies so vulnerable to email fraud?

We were pleasantly surprised to see a letter from Senator Ron Wyden of Oregon to the Department of Homeland Security tod...

by Valimail
July 18, 2017
Read more
What is DMARC?

Related posts: What is email authentication? What is SPF? What is DKIM? The five key standards of email authentication ...

by Valimail
July 17, 2017
Read more
What is email authentication?

Related posts: What is DMARC? What is SPF? What is DKIM? The five key standards of email authentication For most of th...

by Valimail
April 26, 2017
Read more
Banks Adopt Email Authentication, But There’s More to Do

Banks take security seriously. Photo by Jason Baker/Flickr. The march toward universal email authentication continues. T...

by Valimail
April 3, 2017
Read more
Momentum Builds for DMARC in the U.S. and U.K

The movement to implement email authentication is gathering steam, and international cyber security experts are increasi...

by Valimail
March 30, 2017
Read more
Being Careful About Links Is Not Enough

According to the Anti-Phishing Working Group’s Q3 2016 report (.pdf), there are over 100,000 unique phishing sites activ...

by Valimail
March 24, 2017
Read more
FTC: Companies Are Embracing Email Authentication — Partially

The Federal Trade Commission announced today that U.S. companies seem to understand the value of email authentication — ...

by Valimail
March 4, 2017
Read more
Email Authentication and Mailing Lists Haven’t Worked Well Together — Until Now

DMARC and email lists: BFFs at last. Photo source: Pixabay One of the most common technical concerns we hear about email...

by Valimail
March 3, 2017
Read more
Even Cyber Security Leaders Struggle With Email Safety

RSA is one of the largest cybersecurity providers in the world, and its annual conference in San Francisco, happening th...

by Alexander García-Tobar
February 23, 2017
Read more
How DMARC Handles Domains and Subdomains in Email Addresses (Part 1)

DMARC uses the Domain Name System (DNS) to store records indicating how email receivers should evaluate incoming message...

by Peter Goldstein
February 10, 2017
Read more
Email Authentication Accelerates, But Enterprises Struggle to Get It Right

A bit like building a gate and then leaving it open. Photo credit: h.koppdelaney More and more domains are adopting DMAR...

by Valimail
December 1, 2016
Read more
Email Impersonation Knows No Borders

Hello…Elvis? Photo credit: Gunnshots Email impersonation scams, also known as business email compromise (BEC) or p...

by Valimail
November 17, 2016
Read more
DMARC Moves to Mainstream with Gartner Recommendation

In its recent report Fighting Phishing: Protect Your Brand Gartner lays out a series of recommended steps to reduce the ...

by Valimail
June 6, 2016
Read more