DMARC – Page 7 – WindowsTechs.com

Phishers bypass Microsoft 365 security controls by spoofing Microsoft.com

Posted on December 10, 2020 by Zeljka Zorz

A domain spoofing email phishing campaign that very convincingly impersonates Microsoft and successfully tricks legacy secure email gateways has recently been spotted by Ironscales. It also led them to discover that Microsoft servers are not currently … Continue reading Phishers bypass Microsoft 365 security controls by spoofing Microsoft.com→

DKIM alignment failure with Third-party service

Posted on December 3, 2020 by Jacco

We (let’s call ourselves foo.com) have a Third-party service (let’s call them: bar.com) that sends emails on our behalf, with email from our domain (for example: baz@foo.com). To facilitate a smooth mail flow, we have set up SPF, DKIM and … Continue reading DKIM alignment failure with Third-party service→

University Email Hijacking Attacks Push Phishing, Malware

Posted on October 29, 2020 by Lindsey O'Donnell

Attackers are compromising email accounts from popular universities, including Purdue and Oxford, to launch attacks that get around DMARC and SPF. Continue reading University Email Hijacking Attacks Push Phishing, Malware→

Does gmail still ignore DKIM if SPF passes, DMARC style?

Posted on October 4, 2020 by Morrison

This blog post from 2016 shockingly implies that gmail will accept an email if either SPF or DKIM passes. We use G suite SMTP servers, therefore SPF provides almost zero protection from spoofing. Is this still the case?
Since DMARC only n… Continue reading Does gmail still ignore DKIM if SPF passes, DMARC style?→

Airline DMARC Policies Lag, Opening Flyers to Email Fraud

Posted on August 19, 2020 by Lindsey O'Donnell

Up to 61 percent out of the IATA (International Air Transport Association) airline members do not have a published DMARC record. Continue reading Airline DMARC Policies Lag, Opening Flyers to Email Fraud→

How do I select a DMARC solution for my business?

Posted on July 22, 2020 by Mirko Zorz

Domain-based Message Authentication, Reporting & Conformance (DMARC), is an email authentication, policy, and reporting protocol. It builds on the SPF and DKIM protocols to improve and monitor protection of the domain from fraudulent email. To sel… Continue reading How do I select a DMARC solution for my business?→

Amazon-Themed Phishing Campaigns Swim Past Security Checks

Posted on July 16, 2020 by Tara Seals

A pair of recent campaigns aim to lift credentials and other personal information under the guise of Amazon package-delivery notices. Continue reading Amazon-Themed Phishing Campaigns Swim Past Security Checks→

DMARC Adoption Spikes, Higher Ed Remains Behind

Posted on July 14, 2020 by Tara Seals

As colleges and universities prepare for the fall semester, email protections against surging threats like BEC and phishing are lagging. Continue reading DMARC Adoption Spikes, Higher Ed Remains Behind→

A ‘New Age’ of Sophisticated Business Email Compromise is Coming

Posted on July 13, 2020 by Lindsey O'Donnell

A new BEC threat group is heralding more sophisticated email scams that target organizations without DMARC and squeeze as much money out of victims as possible. Continue reading A ‘New Age’ of Sophisticated Business Email Compromise is Coming→

Category Archives: DMARC