Why DMARC?

With almost 5 billion email accounts worldwide, there’s no channel with a wider reach than the email channel. This ensures that cyber criminals like to use this channel for malicious purposes. Despite the fact that better security measures have been taken in recent years to protect this channel, the crime on this channel is increasing year by year. 95% of all hacking attacks and data breaches involve email.

This is the area where DMARC adds value. DMARC does not only provides full insight in email channels, it also makes phishing attacks visible. DMARC is more powerful: DMARC is capable of mitigating the impact of phishing and malware attacks, preventing spoofing, protect against brand abuse, scams and avoid business email compromise. DMARC Analyzer enables organisations to use DMARC and simplify the DMARC deployment process.

Recent studies shows why DMARC is crucial:
– A single spear phishing attack costs organizations an average of $1.6 million
– From 2013 to 2016 companies saw losses approaching $1.6 billion
– $500 million every year is scammed by phishing attacks
– The average 10,000-employee company spends $3.7 million a year dealing with phishing attacks,
– The average employee wastes 4.16 hours a year on phishing scams.
– Between January 2015 and December 2016 dollar figures climbed sharply up with 2370% by phishing attacks
– Only 3% of users report phishing emails to their management
– More than 400 businesses are targeted by BEC scams every day
– 76% of organizations reported being victim of a phishing attack in 2016
– 1 in 3 companies have been victims of CEO fraud emails
– 70% of all global emails is malicious
– The volume of spam emails increased 4x in 2016
– The amount of phishing emails containing a form of ransomware grew to 97.25% during Q3 2016, up from 92% in Q1 2016
– 9 out of 10 phishing emails carried ransomware in March 2016
– Fake invoice messages are the #1 type of phishing lure
– Reports of W-2 phishing emails increased 870% in 2017
– 78% of people claim to be aware of the risks of unknown links in emails. And yet they click anyway
– An average of over 400,000 phishing sites have been observed each month in the year 2016
– 30 percent of phishing emails get opened
– 1 in 131 emails contained malware in 2016, the highest rate in 5 years

Where does DMARC help?

Organisations and their clients are being harmed by emails send on their behalf, DMARC can block these attacks. With DMARC an organization can protect their email channel and prevent:

– Phishing on customers of the organisation
– Brand abuse & scams
– Malware and Ransomware attacks
– Employees from spear phishing and CEO fraud to happen

DMARC Analyzer let you gain full insight in the email channel. What’s a benefit of DMARC is that previously, an organization only had insight into phishing attacks when this had already happened. With DMARC it becomes possible to gain insight into attacks before they take place. In this way, consumers can be informed in advance and therefore are aware of these attacks.

DMARC in practice

The main goal of DMARC is to detect and prevent email spoofing. For example, phishing scams using domains from banks to send out email on their behalf. Customers from that bank think they receive a legit email, that their bank card isn’t valid anymore. The link to click on will lead to a fraudulent website. This website is exactly the same as the real website and logging in will provide the cyber criminals the possibility to use your credentials.

Originally DKIM and SPF helped to protect your domains from scams like this. However cyber criminals can bypass these security measures. In order to fully secure your domain and email channel, DMARC will create a link between SPF & DKIM. When implementing DMARC into your DNS record you gain insight in your email channel. ISPs will provide DMARC reports on a daily basis and these DMARC reports can be send to the email address that’s published in your DMARC record. DMARC Analyzer provides a dashboard to monitor and analyse your SPF, DKIM and DMARC results.

Publishing a DMARC record into your DNS itself isn’t enough to secure your domains. DMARC is working with 3 DMARC policies, this makes is possible for you to decide what will happen with your emails. The ‘none’ policy is only for collecting data and monitoring your current email channel. To enforce your email channel there are 2 more DMARC policies. The ‘quarantine’ policy will deliver malicious email into the spam folder of the receiver and the ‘reject’ policy goes a step further with not deliver that email at all.

So DMARC makes it possible to secure your domains and let you decide what must happen when servers from an ISP receive malicious email. Please note! that DMARC is a very powerful solution to fully secure your email domain when configured correctly. Going to a quarantine or reject policy immediately can lead to a lot of false positives. Make sure before enforcing your domains everything is setup correctly. DMARC Analyzer offers 5 easy stages to help you to secure your email channel.

What is DMARC

What is DMARC?

DMARC (Domain-based Message Authentication, Reporting & Conformance) is an email authentication technique. DMARC was created by PayPal together with Google, Microsoft and Yahoo!. With DMARC a domain owner publishes a DMARC record and will gain insight and control over the email send on his behalf. You can use DMARC to protect your domains against abuse in phishing or spoofing attacks.

As a website owner, you want to know for sure that your visitors or customers will only see emails that you have sent yourself. Therefore, DMARC is a must for every domain owner. Securing your email with DMARC gives email receivers certainty whether an email is legit and has originated from you. This results in a positive impact on email delivery and also prevents others from sending email using your domain.

Watch our video: DMARC explained

 

History of DMARC

DMARC is a standard first published in 2012 to prevent email abuse. Several industry leaders have worked together to create the DMARC specification. It is based on the existing authentication techniques SPF (Sender Policy Framework) and DKIM (Domain Keys Identified Mail).

DMARC is originally developed as an email security protocol adopted mostly by security experts in the financial industry. Currently the adoption of DMARC is becoming more spread over the online landscape and DMARC is more and more recognised by email marketeers as an aspect of online security and improved deliverability.

DMARC is currently supported by all major ISP’s (such as Google, Microsoft, Yahoo! etc). DMARC is awaiting approval to become an open standard approved The Internet Engineering Task Force (IETF).