According to a new report released by Agari, 92 percent of Fortune 500 companies have not fully adopted email protections such as DMARC to prevent email attacks that impersonate corporate email domains.
DMARC stands for Domain-based Message Authentication, Reporting and Conformance. DMARC is used to allow the email sending domain owner to specify how receivers can verify the authenticity of the sender organization’s email, as well as how your organization (or the receiver) can handle email that fails to verify.
See more details in the Agari DMARC Adoption Report.
Organizations can use DMARC to set policies to monitor, quarantine or reject messages (such as block delivery of unauthenticated messages).
Check out our previous report highlighting email security best practices from NIST to include SPF, DKIM and DMARC.