DMARC360 Blog

When implementing DMARC, you will hear the phrase ‘DMARC Identifier Alignment’ a lot, but what exactly does it mean? 

It is the relation between the return path domain and the FROM HEADER of an ...

BEC (Business Email Compromise) is a targeted email fraud with a potentially high financial assurance. Last year, as per the IC3 Report, Cybercrime led to $3.5 billion losses in the US alone, with BEC fraud accounting for almost half of that. This year has also seen a surge in this particular type of fraud.

The implementation of the DMARC framewor...

DMARC record is a DNS txt record published in your public DNS. The DMARC version tag defines that this is a DMARC record. When the receiver queries your public DNS, they will be able to identify this as your DMARC record.

  • Identify your domains

 The first step is identifying all domains that are owned by your organization. The DMARC framework can be deployed on all your domains, even if they are dormant and not used for anything. Those domains still belong to you and can be impersonated by an attacker infringing upon your brand.

  • <...

DMARC (Domain-based Message Authentication, Reporting, and Conformance) implementation is highly dependent on its reporting mechanism. By analyzing DMARC reports, you can deploy this framework to its full maturity on your domains.

There are 2 different types of DMARC reports, aggregate report, and the forensic report...

DMARC or Domain-based Message Authentication Reporting and Conformance is a framework designed for 2 things:

  1. Allow the email sender to tell the receiver what to do in case of a forged email.
  2. Allow the email receiver to send back reports on the authentication che...

SPF, the Sender Policy Framework, was the first protocol designed for an email sender to authorize their messages.

The Problem:

SMTP, Simple Mail Transfer Protocol, emphasized on reliability instead of security. This protocol is used for email communication...

DKIM, Domain Keys Identified Mail, was put together to enable digital signatures on emails verifying their integrity.

The Problem:

Even though SPF record authorizes IP Addresses to send email on behalf of a domain, an IP Address can be spoofed, which...

The DMARC framework is not only designed for domains that are actively being used for email exchange, but it is recommended to be used for every domain you own.

For inactive non-email sending domains, it is a recommended best practice to have an SPF and DMARC record on a ...

DMARC has 3 policies, None, Quarantine and Reject. The purpose of these is to ensure appropriate DMARC implementation with limited impact on your genuine emails.

None Policy

This stage is the monitoring mode where you enhance your SPF and DKIM records. This policy lets y...