DMARC
65 articles about DMARC
Building an email and brand defense that works: Webinar recap
DMARC is a good start, but it’s not the finish line. Learn more about the multifaceted nature of cyber attacks and what you can do to protect your brand in this webinar recap.
Read moreDMARC59% of North Central U.S. organizations exposed to email spoofing
Red Sift analyzed 1,000 North Central domains and found only 41% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDMARC64% of U.S. Heartland organizations exposed to email spoofing
Red Sift analyzed 900 Heartland domains and found only 36% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDMARCMost businesses still can't answer one simple question about their email
Just 2.5% of domains enforce DMARC at p=reject. Red Sift and Bespin Labs (Patronum) break down why email authentication stalls, and how to fix it before regulators and attackers force the issue.
Read moreDMARCOnly 40% of the Southwest's top organizations block spoofed email
Red Sift analyzed 500 Southwest domains and found only 40% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDMARCHow to secure your brand with DMARC against email threats: Webinar recap
AI-powered phishing attacks have surged. Learn how DMARC enforcement protects your brand from exact domain spoofing in this webinar recap.
Read moreDMARCOnly 44% of the Mid-Atlantic's top organizations block spoofed email
Red Sift analyzed 700 Mid-Atlantic domains and found only 44% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDNSNIST DNS update: What this means for your organization
NIST SP 800-81 Revision 3 reframes DNS as an active security layer for the first time since 2013. Here's what changed and why it matters for DMARC, SPF, and DKIM.
Read moreDMARC65% of the U.S. Northeast's top organizations are vulnerable to phishing
An analysis of 700 domains across seven Northeast U.S. states found that only 35% have reached full DMARC enforcement, with significant variation between states and industries.
Read moreDMARC50% of Boston's top organizations lack full DMARC protection
Red Sift analyzed 99 domains from Boston's largest organizations and found nearly half (49.5%) haven't reached DMARC enforcement, leaving them open to spoofing and BEC.
Read moreDMARC43% of Washington D.C.'s top organizations vulnerable to phishing
Red Sift analyzed 100 domains from Washington D.C.'s largest organizations and found 43% lack DMARC enforcement — right where US cybersecurity policy is made.
Read moreDMARCOver a quarter of New York's top organizations still exposed to email spoofing
Red Sift analyzed 99 domains from New York's largest organizations. While 72.7% have reached DMARC enforcement, 27 domains remain exposed to email spoofing.
Read moreEmail SecurityMicrosoft backs DMARC as protection against Tycoon 2FA phishing surge
Attackers are using Tycoon 2FA kits to send phishing emails from misconfigured servers. Microsoft now recommends strict DMARC enforcement as the primary defense.
Read moreDMARC52% of US insurance brokers remain vulnerable to email spoofing
52% of the top 50 US insurance brokers have no effective DMARC protection, leaving them vulnerable to spoofing and phishing in an industry built on client trust.
Read moreDMARCWhat is DMARC and how does it work effectively?
DMARC protects domains from unauthorized email by aligning SPF and DKIM results with the visible From address. This guide covers how it works and how to deploy it effectively.
Read moreDNS4 free tools for quick email security testing
Four free tools from Red Sift to audit your email authentication in minutes: Investigate for DMARC, SPF Checker, BIMI Checker, and Blacklist Checker.
Read moreEmail SecurityDMARC, DKIM, SPF & BIMI: 5-minute playbook for Security and Marketing
A quick-reference playbook for security and marketing teams covering SPF, DKIM, DMARC, and BIMI — what each does, why all four matter, and how to implement them.
Read moreDMARCFinding the right DMARC monitoring tool: A practical guide for security teams
A practical guide for choosing the right DMARC monitoring tool based on your organization's maturity — from basic reporting needs to full enterprise enforcement.
Read moreDMARCSPF, DKIM, and DMARC: the three protocols protecting your inbox (and why you need all of them)
SPF and DKIM alone can't prevent spoofing because they check different headers. This guide explains how DMARC ties them together to close the gap.
Read moreDMARCHow to simplify DMARC, SPF, and DKIM management
Managing email authentication is complex — SPF lookup limits, DKIM key rotation, configuration drift. This post shows how OnDMARC simplifies the path to full enforcement.
Read moreDMARCBest enterprise DMARC solution: Red Sift OnDMARC
Red Sift OnDMARC unifies DMARC, SPF, DKIM, BIMI, and MTA-STS management in one platform, with the fastest enforcement timeline and dynamic DNS optimization for enterprise environments.
Read moreDMARCTop platforms for enterprise DMARC enforcement: Technical comparison for Security Leaders
A technical comparison of 7 enterprise DMARC platforms, evaluating automation, API integration, and time-to-enforcement. Red Sift OnDMARC leads with 6-8 week enforcement.
Read moreDMARCOver 40% of essential services companies remain vulnerable to phishing
Red Sift's analysis of 840 companies in chemical, energy, and water sectors found 42% lack DMARC protection, leaving critical infrastructure exposed to email threats.
Read moreEmail Security41% of top Fintech companies are vulnerable to email phishing
Only 26% of leading Fintechs enforce DMARC at p=reject, leaving the majority exposed to spoofing and phishing attacks in a heavily targeted industry.
Read moreDMARC49% of Big Pharma Companies Are Vulnerable to Email Phishing
Nearly half of major pharmaceutical companies have no DMARC protection. Here's what Red Sift's research found and what the sector needs to do.
Read moreDMARC74% of Credit Unions Are Spoofable: Is Yours on the List?
Red Sift research found almost three quarters of US credit unions have no domain protection. Find out if your organisation made the list.
Read moreDMARCLa Poste announces new email authentication requirements for all senders
La Poste (laposte.net) has today announced significant changes to its email authentication requirements that will take effect in September 2025. These new requirements will fundamentally change how emails are processed and delivered to La Poste email addresses. What’s changing? Starting in September, La Poste will implement strict email authentication protocols that will affect all senders….Continue Reading: La Poste announces new email authentication requirements for all senders
Read moreDMARCLa Poste annonce de nouvelles exigences d’authentification des e-mails pour tous les expéditeurs
La Poste (laposte.net) a annoncé aujourd’hui des changements importants à ses exigences d’authentification des e-mails qui entreront en vigueur en septembre 2025. Ces nouvelles exigences changeront fondamentalement la façon dont les e-mails sont traités et livrés aux adresses e-mail de La Poste. Qu’est-ce qui change ? À partir de septembre, La Poste mettra en place…Continue Reading: La Poste annonce de nouvelles exigences d’authentification des e-mails pour tous les expéditeurs
Read moreDMARCUse Your Microsoft Azure Commitment (MACC) with OnDMARC
OnDMARC is eligible under MACC, so you can deploy DMARC enforcement against your existing Azure commitment — no new budget required.
Read moreDMARCWhat Is Email Spoofing and How Do You Prevent It?
Email spoofing lets attackers impersonate your domain to deceive recipients. Here's how it works, why it's so effective, and how to stop it.
Read moreDMARCSVGs with JavaScript are bypassing traditional email security: Learn how to stay secure
Executive summary: Hackers are hiding JavaScript inside SVG attachments that pass as harmless images, and slipping past Secure Email Gateways (SEGs). To stay secure, organizations need to enforce a DMARC policy of p=reject, easily implemented with Red Sift OnDMARC, to stop compromised SVGs before they reach the end user. Key takeaways: Scalable Vector Graphics (SVG)…Continue Reading: SVGs with JavaScript are bypassing traditional email security: Learn how to stay secure
Read moreDMARCOver 50% of US Banks Remain Vulnerable to Phishing Attacks
New research shows the majority of US banks still lack DMARC enforcement, leaving customers exposed to impersonation. Here's what the data shows.
Read moreDMARC73% of Healthcare Breaches Involve Domains Without DMARC
New data shows nearly three quarters of healthcare breaches involve organisations with no DMARC enforcement. Here's what that means for the sector.
Read moreDMARCThe Future of Email Security: What's Coming Next
From AI-generated phishing to evolving authentication standards, here's how Red Sift sees email security developing — and how to stay ahead.
Read moreDMARCWhy DMARC Is Non-Negotiable for Aviation Security
Aviation is a high-stakes target for email fraud. Here's why DMARC enforcement is critical for airlines, airports, and the wider supply chain.
Read moreDMARCWhy DMARC Should Top Your MSP Roadmap in 2025
MSPs that don't offer DMARC are leaving clients exposed and revenue on the table. Here's why it belongs at the top of every security roadmap.
Read moreDMARCNew Zealand Mandates DMARC: What It Means for Your Org
New Zealand joins the list of governments mandating DMARC enforcement. Here's what the policy requires and how to get compliant fast.
Read moreDMARCDMARC ROI: The Business Case for Email Authentication
DMARC delivers measurable ROI through reduced fraud, improved deliverability, and lower incident costs. Here's how to make the case internally.
Read moreDMARCMicrosoft's Update Drove a 400,000 Domain DMARC Surge
Microsoft's high-volume sender requirements triggered a wave of DMARC adoption. Here's what drove it and what it means for email security.
Read moreDMARCStop Phishing via Microsoft Email Routing with Red Sift
Complex Microsoft 365 routing setups can break DMARC alignment. Red Sift OnDMARC handles it — here's how to protect your mail flow.
Read moreDMARCThe Mail Check Deadline Has Passed: Are You at Risk?
NCSC's Mail Check service changed its free tier. If your organisation relied on it for DMARC monitoring, here's what to do now.
Read moreDMARC60% of Healthcare Organisations Have No DMARC Protection
New research shows most healthcare organisations are dangerously exposed to email impersonation. Here's what the data says and what to do.
Read moreDMARCPreparing for the Mail Check Deadline: A Practical Guide
NCSC's Mail Check free tier is changing. A step-by-step guide to assessing your exposure and finding the right alternative before the deadline.
Read moreDMARC2.3 million organizations embrace DMARC compliance
Executive Summary: Over the past year, 2.3 million organizations have adopted DMARC, enhancing email security globally. This progress reflects a positive trend toward securing email ecosystems, with certain countries leading the charge. This article: Introduction It has been one year since Google and Yahoo implemented stricter requirements for bulk email senders. Eleven months ago, Red Sift…Continue Reading: 2.3 million organizations embrace DMARC compliance
Read moreDMARCMail Check Changes: What UK Organisations Need to Know
NCSC's Mail Check service has been updated. A plain-English breakdown of what changed, what's gone, and what to use instead.
Read moreDMARCBreakSPF: How to mitigate the attack
Executive Summary: BreakSPF is an emerging threat that takes advantage of misconfigured SPF records, especially those with overly broad IP ranges. Attackers can exploit these vulnerabilities to send fraudulent emails that appear legitimate.Utilizing solutions like Red Sift OnDMARC can help organizations detect and correct these misconfigurations, enhancing their overall email security posture. This article: Introduction BreakSPF is…Continue Reading: BreakSPF: How to mitigate the attack
Read moreDMARCNavigating G-Cloud 14 for DMARC Solutions
Procuring DMARC through G-Cloud 14? This guide covers what to look for, how OnDMARC fits the framework, and how to get started.
Read moreDMARCFirst look at DKIM2: The next generation of DKIM
In 2011, the original DomainKeys Identified Mail (DKIM1) standard was published. It outlined a method allowing a domain to sign emails, enabling recipients to verify that the email originated from an entity holding a private key that matches the public key published in the domain’s DNS records. Now in 2024, DKIM is ready for a…Continue Reading: First look at DKIM2: The next generation of DKIM
Read moreDMARCProtecting U.S. Political Campaigns from Email Attacks
Political campaigns are high-value phishing targets. See how DMARC and email authentication protect against impersonation at scale.
Read moreDMARCGetting Started with the OnDMARC API
A practical guide to integrating OnDMARC via API. Automate DMARC reporting, policy management, and enforcement at scale.
Read moreDMARCWhat's Next for DMARC: Key Takeaways from Our Webinar
Red Sift and Inbox Monster explored the future of DMARC together. Here are the highlights — from inbox placement to enforcement trends.
Read moreDMARCDNS and DMARC: Understanding the Relationship
DMARC lives in DNS — but the two are often managed separately, creating gaps. Here's how they interact and why aligned ownership matters.
Read moreDMARCWhy successful email marketing relies on domain authentication
How to master the essentials of email security for optimal campaign reach and inbox placement Crafting the perfect email marketing campaign is hard work. And, nothing is more frustrating than a perfectly crafted campaign not performing because the emails were delivered to the the spam folder. In 2023, Validity found that one in every six…Continue Reading: Why successful email marketing relies on domain authentication
Read moreDMARC2024: The year of DMARC as a business imperative
I can say with confidence that the world does not need more security predictions for 2024. But as we head into the new year, it is important to have conversations about security strategy to inform our business priorities and our road maps. As I talk to our Red Sift customers, our partners, and the thought…Continue Reading: 2024: The year of DMARC as a business imperative
Read moreDMARCGoogle and Yahoo announce new requirements for email delivery
On October 3, 2023, Google and Yahoo announced a new set of requirements for email delivery that will become mandated by February 2024. For senders that send more than 5,000 emails a day to Gmail addresses, Google will require a set of authentication measures to be met in order to ensure secure email delivery to…Continue Reading: Google and Yahoo announce new requirements for email delivery
Read moreDMARCMicrosoft's New DMARC Policy Handling: What's Changed
Microsoft updated how it processes DMARC policies for high-volume senders. Here's what changed, why it matters, and what to do next.
Read moreDMARCWhat Is a Beg Bounty? Avoiding DMARC Vulnerability Payouts
Beg bounties exploit weak DMARC configs to extort payments. Learn what they are, how they target your domain, and how to shut them down.
Read moreDMARCHow DMARC Helps Healthcare Defend Against Ransomware
Most ransomware starts with a phishing email. DMARC stops attackers impersonating your domain — a frontline ransomware defence for healthcare.
Read moreDMARCData Privacy Day: Why DMARC Is a Privacy Issue Too
Email impersonation isn't just a security problem — it's a privacy one. Here's why DMARC belongs in every data protection conversation.
Read moreDMARC19 DMARC Myths, Debunked by the Experts
Confused by conflicting DMARC advice? We tackle 19 common myths — from 'p=none is fine' to 'DMARC breaks email' — with straight answers.
Read moreDMARCDMARC Reporting for Office 365: What You Need
Office 365 doesn't surface DMARC aggregate reports natively. Learn how to get full visibility into who's sending on your domain.
Read moreDMARCLondon's Restaurants Are Failing Basic Email Security
Red Sift tested DMARC adoption across London's top restaurants ahead of Valentine's Day. The results were not romantic.
Read moreDMARCU.S. Universities Are Failing at DMARC Adoption
Threatpost research shows US universities lag badly on DMARC. Here's why higher education is a high-risk sector — and what good looks like.
Read moreDMARCMailsploit: Does It Break DMARC?
Mailsploit exploits email client rendering bugs to spoof senders — even with DMARC in place. Here's what actually protects you.
Read moreDMARCWithout DMARC, Email Is Cybersecurity's Weakest Link
Most breaches start with email. Without DMARC, your domain is an open door for impersonation. Here's the case for making enforcement a baseline.
Read more