View all articles
289 articles
OnDMARC climbs to #1 in the Mid-Market Grid in G2's Summer 2026 Report
Red Sift OnDMARC ranked #1 in three Mid-Market indexes and earned 10 badges in G2's Summer 2026 Report.
Read moreCertificatesDKIM and Post-Quantum Cryptography: Keep Calm and Fix the Basics
Post-quantum cryptography is a real issue, but not every part of the email security stack is exposed in the same way. A lot of commentary collapses the whole topic into “store now, decrypt later”: ...
Read moreDMARCDMARCbis is now an IETF Proposed Standard: What that means today
Going forward, DMARCbis is the new DMARC with added clarity.
Read moreCertificatesCA/Browser Forum: ACME CAA Extensions (RFC 8657) To Become Mandatory
The CA/Browser Forum has spoken: ACME CAA extensions will be mandatory from March 2027 onward.
Read moreEmail AuthenticationBuilding an email and brand defense that works: Webinar recap
DMARC is a good start, but it’s not the finish line. Learn more about the multifaceted nature of cyber attacks and what you can do to protect your brand in this webinar recap.
Read moreFTSE 250 DMARC report: 39% of the UK's top companies still don't block spoofed email
Red Sift analysed DMARC records for the FTSE 250. 60.8% have reached enforcement, but 98 of the UK's largest mid-cap companies still leave email exposed.
Read moreDMARC59% of North Central U.S. organizations exposed to email spoofing
Red Sift analyzed 1,000 North Central domains and found only 41% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreAI & SecurityBeyond the leaderboard: Benchmarking LLMs on a real security task
We benchmarked 12 LLM configurations on Radar Lite's security summarization task. Frontier models led, but mid-tier options came surprisingly close at a fraction of the cost.
Read moreCertificatesHigh-Assurance Certificate Transparency Monitoring with Red Sift Certificates
Learn how to detect unauthorized certificate issuances with Certificate Transparency monitoring. Set up CAA policies, CT monitoring rules, and high-assurance escalation in Red Sift Certificates.
Read moreCertificatesShould you use public PKIs for your private infrastructure?
Public PKIs are cost-effective for internal use, but come with trade-offs like certificate transparency, rate limits, and shrinking lifetimes. Here's how to decide between public and private PKI.
Read moreCertificatesHow many public PKIs are there?
Public Key Infrastructures go far beyond Web PKI. Explore the full landscape of public PKIs — from code signing and S/MIME to BIMI and Matter — and learn which one fits your needs.
Read moreDMARC64% of U.S. Heartland organizations exposed to email spoofing
Red Sift analyzed 900 Heartland domains and found only 36% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDMARCMost businesses still can't answer one simple question about their email
Just 2.5% of domains enforce DMARC at p=reject. Red Sift and Bespin Labs (Patronum) break down why email authentication stalls, and how to fix it before regulators and attackers force the issue.
Read moreEmail SecurityFBI IC3 2025 report: Email fraud is now a $4 billion problem
The FBI IC3 2025 report shows BEC, phishing, and impersonation fraud hit $4B+ in losses. Here’s what the data means for email authentication.
Read moreAI & SecuritySecurity in the age of AI: Mythos and going back to basics
AI models like Anthropic's Mythos are finding and exploiting vulnerabilities faster than humans can keep up. Learn why the answer to AI-driven cyber threats starts with getting the basics right.
Read moreDMARCOnly 40% of the Southwest's top organizations block spoofed email
Red Sift analyzed 500 Southwest domains and found only 40% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreEmail SecurityHow widely supported are Ed25519 DKIM keys and how many providers still accept weak keys?
Red Sift tested 19 mailbox providers for Ed25519 DKIM support and weak key acceptance. Only 47% validate Ed25519, and 6 still accept broken 512-bit RSA keys.
Read moreDMARCHow to secure your brand with DMARC against email threats: Webinar recap
AI-powered phishing attacks have surged. Learn how DMARC enforcement protects your brand from exact domain spoofing in this webinar recap.
Read moreProduct UpdatesRed Sift’s Quarterly Product Release: Spring 2026
Red Sift's Spring 2026 product release covers updates across Brand Trust, OnDMARC, and Certificates. New this quarter: the Brand Trust AI Agent, Dangling MX detection in DNS Guardian, TLS endpoint details, and a PQC readiness dashboard for Enterprise customers.
Read moreDMARCOnly 44% of the Mid-Atlantic's top organizations block spoofed email
Red Sift analyzed 700 Mid-Atlantic domains and found only 44% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read more