View all articles
42 articles
FBI IC3 2025 report: Email fraud is now a $4 billion problem
The FBI IC3 2025 report shows BEC, phishing, and impersonation fraud hit $4B+ in losses. Here’s what the data means for email authentication.
Read moreAI & SecuritySecurity in the age of AI: Mythos and going back to basics
AI models like Anthropic's Mythos are finding and exploiting vulnerabilities faster than humans can keep up. Learn why the answer to AI-driven cyber threats starts with getting the basics right.
Read moreDMARCOnly 40% of the Southwest's top organizations block spoofed email
Red Sift analyzed 500 Southwest domains and found only 40% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreEmail SecurityHow widely supported are Ed25519 DKIM keys and how many providers still accept weak keys?
Red Sift tested 19 mailbox providers for Ed25519 DKIM support and weak key acceptance. Only 47% validate Ed25519, and 6 still accept broken 512-bit RSA keys.
Read moreDMARCHow to secure your brand with DMARC against email threats: Webinar recap
AI-powered phishing attacks have surged. Learn how DMARC enforcement protects your brand from exact domain spoofing in this webinar recap.
Read moreDMARCOnly 44% of the Mid-Atlantic's top organizations block spoofed email
Red Sift analyzed 700 Mid-Atlantic domains and found only 44% have full DMARC enforcement. See the state-by-state breakdown and how to close the gap.
Read moreDNSNIST DNS update: What this means for your organization
NIST SP 800-81 Revision 3 reframes DNS as an active security layer for the first time since 2013. Here's what changed and why it matters for DMARC, SPF, and DKIM.
Read moreCompany NewsOnDMARC dominates Mid-Market and holds strong globally in G2's Spring 2026 Report
OnDMARC ranked #1 in three Mid-Market indexes and earned 10 badges in G2's Spring 2026 Report, with customers rating it 4.8/5 for DMARC management.
Read moreCertificatesPKI ecosystem changes in 2026: what your team needs to know
2026 brings shorter certificate lifetimes, unmanaged private PKI, and looming post-quantum migration. A concise guide to the changes security teams need to plan for.
Read moreCompany NewsRed Sift selected for Tech Nation's Future Fifty 2026
Red Sift has been selected for Tech Nation's Future Fifty 2026 cohort, the UK's flagship scaleup program recognizing high-growth technology companies.
Read moreDMARC65% of the U.S. Northeast's top organizations are vulnerable to phishing
An analysis of 700 domains across seven Northeast U.S. states found that only 35% have reached full DMARC enforcement, with significant variation between states and industries.
Read moreAI & SecurityAttackers are industrializing at scale: Where defenders stand in 2026
Red Sift CEO Rahul Powar shares insights from 1,200+ organizations on how AI-driven attacks are industrializing in 2026, plus updates on Radar Lite and Red Sift's MCP capabilities.
Read moreComplianceActive Cyber Defence: Mail Check and Web Check transition with Ciaran Martin and Rahul Powar
NCSC switched off Mail Check and Web Check on March 31, 2026. Ciaran Martin and Rahul Powar discuss what UK public sector organizations should do next for email security visibility.
Read moreCompany NewsRed Sift named a 2026 G2 Best UK Software Company
Red Sift has been named one of the Best UK Software Companies in G2's 2026 Awards, driven by customer feedback and the market performance of OnDMARC.
Read moreDMARC50% of Boston's top organizations lack full DMARC protection
Red Sift analyzed 99 domains from Boston's largest organizations and found nearly half (49.5%) haven't reached DMARC enforcement, leaving them open to spoofing and BEC.
Read moreDMARC43% of Washington D.C.'s top organizations vulnerable to phishing
Red Sift analyzed 100 domains from Washington D.C.'s largest organizations and found 43% lack DMARC enforcement — right where US cybersecurity policy is made.
Read moreDMARCOver a quarter of New York's top organizations still exposed to email spoofing
Red Sift analyzed 99 domains from New York's largest organizations. While 72.7% have reached DMARC enforcement, 27 domains remain exposed to email spoofing.
Read moreCertificatesHow expired certificates can cause service downtime and financial losses
Certificate expiry outages cost enterprises up to $5 million per incident and take hours to resolve. This post covers the financial impact and how to prevent them.
Read moreComplianceUK Cyber Action Plan sets the standard that private businesses must match
The UK Government's £210M Cyber Action Plan raises the bar for public sector resilience. CEO Rahul Powar argues private businesses must now mirror this approach.
Read moreCertificatesTowards monthly certificate renewal
Certificate lifetimes are shrinking to 47 days by 2029. This post explains why shorter lifetimes improve security and why automation is now essential for renewal.
Read more