You’ve read the headlines – privacy breaches and phishing scams have become increasingly front page news. Gartner Group, a research and advisory firm, reported a 700% increase in phishing attacks from 2008-2012. These attacks targeted major bank brands, payment processors, health care providers, and e-tailers. According to ESET, an IT security company, people receive 12 spam emails a day – this equates to 4,000 spam emails per person, per year! Despite its importance, ubiquity, and resilience, email has never been 100% secure. Email fraud costs companies around the world millions every year, and can permanently destroy brand reputation.
New delivery tools have emerged to assist with brand and consumer protection, the most recent of these being DMARC (Domain-based Message Authentication, Reporting, & Conformance). DMARC is an open email standard published in 2012 by the industry consortium DMARC.org to enable domain-level protection of the email channel. It works in conjunction with more well-known email standards SPF and DKIM, and is the only way for email senders (like yourself!) to tell email receivers (i.e. Microsoft, Yahoo, Gmail) that emails they are sending are truly from them.
Companies that have adopted DMARC see a greater preservation of brand equity, elimination of customer support costs related to email fraud, and renewed trust and engagement in the company’s email channel. Despite the unparalleled insight and brand protection DMARC offers, not all email marketers have adopted it, and it is hurting their bottom line. According to Cisco systems, a successful attack of just 500 customers can cost a company up to $1.4 million!
7 Reasons Why DMARC Can Help Protect Your Brand:
- DMARC is enabled on 70% of the world’s inboxes and has been adopted by the most security-forward brands. (i.e. Facebook, Apple, JPMorgan, Chase, and PayPal)
- DMARC is the only solution that enables Internet-scale email protection and prevents fraudulent use of legitimate brands for email cyberattacks.
- DMARC enables you to authenticate all legitimate email messages and sources for your email-sending domains, including owned and third party domains.
- DMARC is designed to fit into your organization’s existing inbound email authentication process and helps email receivers determine if a message “aligns” with what the receiver knows about the sender.
- DMARC allows you to publish an explicit policy that instructs mailbox providers what to do with email messages that are determined not to be legitimate. These messages can either be sent to a junk folder or rejected outright, protecting unsuspecting recipients from exposure to attacks.
- DMARC provides you, the domain owner, with regular reports on how your mail domains are being used and how ISPs are interpreting their authentication records. This domain-level data can help you to not only identify threats against your customers, but also discover legitimate senders that they may not even be aware of.
- DMARC also allows you to receive feedback from global ISPs regarding any potential misuse of your corporate brand, including fraud or phishing for a recipient’s personal information.
How DMARC Works
Figure 1 shows how DMARC provides visibility into all email traffic and then instructs receivers (i.e. Microsoft, Yahoo, Gmail) how to handle unauthenticated emails, all outside of the mail flow. Figure 2 shows how DMARC protected Inbox Marketer’s domain when, on February 7th we experienced a small attack (shown in red).
Figure 1. (Source: Agari, Inc.)
By using DMARC you are able to gain unprecedented visibility into the legitimate and fraudulent use of your domains, enabling you to protect your customers, employees, and brands from email-based cybercrime. The overall impact to companies that have adopted DMARC is preservation of brand equity, elimination of customer support costs related to email fraud, and renewed trust and engagement in the company’s email channel.
Speak to a deliverability expert to learn more about DMARC and Email Security Contact Us.