View all articles
53 articles
CA/Browser Forum: ACME CAA Extensions (RFC 8657) To Become Mandatory
The CA/Browser Forum has spoken: ACME CAA extensions will be mandatory from March 2027 onward.
Read moreEmail AuthenticationBuilding an email and brand defense that works: Webinar recap
DMARC is a good start, but it’s not the finish line. Learn more about the multifaceted nature of cyber attacks and what you can do to protect your brand in this webinar recap.
Read moreFTSE 250 DMARC report: 39% of the UK's top companies still don't block spoofed email
Red Sift analysed DMARC records for the FTSE 250. 60.8% have reached enforcement, but 98 of the UK's largest mid-cap companies still leave email exposed.
Read moreDMARC59% of North Central U.S. organizations exposed to email spoofing
Red Sift analyzed 1,000 North Central domains and found only 41% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreAI & SecurityBeyond the leaderboard: Benchmarking LLMs on a real security task
We benchmarked 12 LLM configurations on Radar Lite's security summarization task. Frontier models led, but mid-tier options came surprisingly close at a fraction of the cost.
Read moreCertificatesHigh-Assurance Certificate Transparency Monitoring with Red Sift Certificates
Learn how to detect unauthorized certificate issuances with Certificate Transparency monitoring. Set up CAA policies, CT monitoring rules, and high-assurance escalation in Red Sift Certificates.
Read moreCertificatesShould you use public PKIs for your private infrastructure?
Public PKIs are cost-effective for internal use, but come with trade-offs like certificate transparency, rate limits, and shrinking lifetimes. Here's how to decide between public and private PKI.
Read moreCertificatesHow many public PKIs are there?
Public Key Infrastructures go far beyond Web PKI. Explore the full landscape of public PKIs — from code signing and S/MIME to BIMI and Matter — and learn which one fits your needs.
Read moreDMARC64% of U.S. Heartland organizations exposed to email spoofing
Red Sift analyzed 900 Heartland domains and found only 36% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDMARCMost businesses still can't answer one simple question about their email
Just 2.5% of domains enforce DMARC at p=reject. Red Sift and Bespin Labs (Patronum) break down why email authentication stalls, and how to fix it before regulators and attackers force the issue.
Read moreEmail SecurityFBI IC3 2025 report: Email fraud is now a $4 billion problem
The FBI IC3 2025 report shows BEC, phishing, and impersonation fraud hit $4B+ in losses. Here’s what the data means for email authentication.
Read moreAI & SecuritySecurity in the age of AI: Mythos and going back to basics
AI models like Anthropic's Mythos are finding and exploiting vulnerabilities faster than humans can keep up. Learn why the answer to AI-driven cyber threats starts with getting the basics right.
Read moreDMARCOnly 40% of the Southwest's top organizations block spoofed email
Red Sift analyzed 500 Southwest domains and found only 40% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreEmail SecurityHow widely supported are Ed25519 DKIM keys and how many providers still accept weak keys?
Red Sift tested 19 mailbox providers for Ed25519 DKIM support and weak key acceptance. Only 47% validate Ed25519, and 6 still accept broken 512-bit RSA keys.
Read moreDMARCHow to secure your brand with DMARC against email threats: Webinar recap
AI-powered phishing attacks have surged. Learn how DMARC enforcement protects your brand from exact domain spoofing in this webinar recap.
Read moreProduct UpdatesRed Sift’s Quarterly Product Release: Spring 2026
Red Sift's Spring 2026 product release covers updates across Brand Trust, OnDMARC, and Certificates. New this quarter: the Brand Trust AI Agent, Dangling MX detection in DNS Guardian, TLS endpoint details, and a PQC readiness dashboard for Enterprise customers.
Read moreDMARCOnly 44% of the Mid-Atlantic's top organizations block spoofed email
Red Sift analyzed 700 Mid-Atlantic domains and found only 44% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDNSNIST DNS update: What this means for your organization
NIST SP 800-81 Revision 3 reframes DNS as an active security layer for the first time since 2013. Here's what changed and why it matters for DMARC, SPF, and DKIM.
Read moreCompany NewsOnDMARC dominates Mid-Market and holds strong globally in G2's Spring 2026 Report
OnDMARC ranked #1 in three Mid-Market indexes and earned 10 badges in G2's Spring 2026 Report, with customers rating it 4.8/5 for DMARC management.
Read moreCertificatesPKI ecosystem changes in 2026: what your team needs to know
2026 brings shorter certificate lifetimes, unmanaged private PKI, and looming post-quantum migration. A concise guide to the changes security teams need to plan for.
Read more