Latest
View all articlesHow many public PKIs are there?
Public Key Infrastructures go far beyond Web PKI. Explore the full landscape of public PKIs — from code signing and S/MIME to BIMI and Matter — and learn which one fits your needs.
Read moreDMARC64% of U.S. Heartland organizations exposed to email spoofing
Red Sift analyzed 900 Heartland domains and found only 36% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDMARCMost businesses still can't answer one simple question about their email
Just 2.5% of domains enforce DMARC at p=reject. Red Sift and Bespin Labs (Patronum) break down why email authentication stalls, and how to fix it before regulators and attackers force the issue.
Read moreEmail SecurityFBI IC3 2025 report: Email fraud is now a $4 billion problem
The FBI IC3 2025 report shows BEC, phishing, and impersonation fraud hit $4B+ in losses. Here’s what the data means for email authentication.
Read moreAI & SecuritySecurity in the age of AI: Mythos and going back to basics
AI models like Anthropic's Mythos are finding and exploiting vulnerabilities faster than humans can keep up. Learn why the answer to AI-driven cyber threats starts with getting the basics right.
Read moreDMARCOnly 40% of the Southwest's top organizations block spoofed email
Red Sift analyzed 500 Southwest domains and found only 40% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreEmail SecurityHow widely supported are Ed25519 DKIM keys and how many providers still accept weak keys?
Red Sift tested 19 mailbox providers for Ed25519 DKIM support and weak key acceptance. Only 47% validate Ed25519, and 6 still accept broken 512-bit RSA keys.
Read moreDMARCHow to secure your brand with DMARC against email threats: Webinar recap
AI-powered phishing attacks have surged. Learn how DMARC enforcement protects your brand from exact domain spoofing in this webinar recap.
Read moreProduct UpdatesRed Sift’s Quarterly Product Release: Spring 2026
Red Sift's Spring 2026 product release covers updates across Brand Trust, OnDMARC, and Certificates. New this quarter: the Brand Trust AI Agent, Dangling MX detection in DNS Guardian, TLS endpoint details, and a PQC readiness dashboard for Enterprise customers.
Read moreDMARCOnly 44% of the Mid-Atlantic's top organizations block spoofed email
Red Sift analyzed 700 Mid-Atlantic domains and found only 44% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDNSNIST DNS update: What this means for your organization
NIST SP 800-81 Revision 3 reframes DNS as an active security layer for the first time since 2013. Here's what changed and why it matters for DMARC, SPF, and DKIM.
Read moreExplore more articles
Email Security Weekly
May 4, 2026
What's happening in email security: April 27-May 3, 2026
AccountDumpling abuses Google AppSheet to bypass DMARC. PayPal subject lines hijacked for tech-support scams.
Read issue
April 20, 2026
What's happening in email security: April 13-19, 2026
Proofpoint finds malicious inbox rules in 10% of breached M365 accounts, and the FBI's 2025 IC3 report shows phishing losses tripling year over year.
Read issue
April 14, 2026
What's happening in email security: April 6–13, 2026
AI-generated device code phishing, APT28's Outlook stealer, Iran's M365 password spraying, and the W3LL takedown. Your April 6–13 email security briefing.
Read issue