Since we last reported on Yahoo! Mail, two more large email account providers – Outlook.com and Comcast – have announced to support DMARC, an email authentication standard which protects both your inbox and email senders from potentially harmful phishing attacks.
This adoption of DMARC by the world’s most used email clients (Gmail, Hotmail, Yahoo! Mail, AOL and now Outlook.com and Comcast), is a step forward in enhancing email security for both companies and end users, beyond SPF, SenderID, and DKIM email authentications.
Companies can implement DMARC to fight against domain-based phishing. In simple terms, your company can authenticate its email sender addresses (such as firstname.lastname@example.org) so that a spammer cannot falsely represent your company (i.e. phishing) and use the same sender address (also called FROM address); that email will be flagged, either recorded or blocked, before reaching people’s inbox. Without DMARC, your company’s email communications can be vulnerable to these attacks. Companies such as Facebook and financial institutions such as Bank of America use DMARC to maintain the highest level of email security.
We encourage your company to do the same if phishing attacks are a concern. Implementing DMARC is just a matter of adding a record to your DNS. If you are using an email service provider (ESP) such as MailUp, we can gladly assist you in setting your emailing account with DMARC.
We’ll keep you updated on the latest news on email security.
Resources to look at: