Summary: The adoption of the DMARC email authentication standard has significantly increased in the past year, doubling the number of domains utilizing it, which improves email security against spoofing and phishing. Despite this progress, 87% of domains still lack a DMARC record, indicating that many organizations, particularly in sectors like healthcare, need to enhance their cybersecurity measures. New regulations and technologies like BIMI are expected to further drive adoption and improve email security overall.
Affected: email service providers, organizations handling sensitive data
Keypoints :
- The rate of DMARC adoption has doubled since Google and Yahoo mandated it for bulk email senders in February 2024.
- Despite increased adoption, 87% of domains still lack DMARC, and some sectors have low implementation rates.
- Attackers continue to adapt, exploiting gaps such as lookalike domains and subdomain techniques to bypass DMARC protections.
- Organizations are encouraged to move to stricter DMARC policies and consider implementing BIMI for enhanced branding and visibility.
- Effective DMARC implementation helps in improving email filtering and enhancing cybersecurity against phishing attacks.
Source: https://www.darkreading.com/remote-workforce/google-dmarc-push-email-security-challenges