Email Security
15 articles about Email Security
64% of U.S. Heartland organizations exposed to email spoofing
Red Sift analyzed 900 Heartland domains and found only 36% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDMARCMost businesses still can't answer one simple question about their email
Just 2.5% of domains enforce DMARC at p=reject. Red Sift and Bespin Labs (Patronum) break down why email authentication stalls, and how to fix it before regulators and attackers force the issue.
Read moreEmail SecurityFBI IC3 2025 report: Email fraud is now a $4 billion problem
The FBI IC3 2025 report shows BEC, phishing, and impersonation fraud hit $4B+ in losses. Here’s what the data means for email authentication.
Read moreEmail SecurityHow widely supported are Ed25519 DKIM keys and how many providers still accept weak keys?
Red Sift tested 19 mailbox providers for Ed25519 DKIM support and weak key acceptance. Only 47% validate Ed25519, and 6 still accept broken 512-bit RSA keys.
Read moreDMARCHow to secure your brand with DMARC against email threats: Webinar recap
AI-powered phishing attacks have surged. Learn how DMARC enforcement protects your brand from exact domain spoofing in this webinar recap.
Read moreDNSNIST DNS update: What this means for your organization
NIST SP 800-81 Revision 3 reframes DNS as an active security layer for the first time since 2013. Here's what changed and why it matters for DMARC, SPF, and DKIM.
Read moreEmail SecurityMicrosoft backs DMARC as protection against Tycoon 2FA phishing surge
Attackers are using Tycoon 2FA kits to send phishing emails from misconfigured servers. Microsoft now recommends strict DMARC enforcement as the primary defense.
Read moreDMARCWhat is DMARC and how does it work effectively?
DMARC protects domains from unauthorized email by aligning SPF and DKIM results with the visible From address. This guide covers how it works and how to deploy it effectively.
Read moreEmail SecurityIETF calls for end of ARC experiment: What it means for email authentication
The IETF recommends marking ARC (Authenticated Received Chain) as obsolete after a 10-year experiment. This post explains the implications for email forwarding and authentication.
Read moreDNS4 free tools for quick email security testing
Four free tools from Red Sift to audit your email authentication in minutes: Investigate for DMARC, SPF Checker, BIMI Checker, and Blacklist Checker.
Read moreEmail SecurityDMARC, DKIM, SPF & BIMI: 5-minute playbook for Security and Marketing
A quick-reference playbook for security and marketing teams covering SPF, DKIM, DMARC, and BIMI — what each does, why all four matter, and how to implement them.
Read moreDMARCSPF, DKIM, and DMARC: the three protocols protecting your inbox (and why you need all of them)
SPF and DKIM alone can't prevent spoofing because they check different headers. This guide explains how DMARC ties them together to close the gap.
Read moreDMARCHow to simplify DMARC, SPF, and DKIM management
Managing email authentication is complex — SPF lookup limits, DKIM key rotation, configuration drift. This post shows how OnDMARC simplifies the path to full enforcement.
Read moreEmail SecurityGmail's enforcement ramps up: What bulk senders need to know
Gmail is now rejecting emails from bulk senders who lack SPF, DKIM, DMARC, and one-click unsubscribe. Here's what to fix before enforcement hits your deliverability.
Read moreEmail Security41% of top Fintech companies are vulnerable to email phishing
Only 26% of leading Fintechs enforce DMARC at p=reject, leaving the majority exposed to spoofing and phishing attacks in a heavily targeted industry.
Read more