DMARC is used for email security by just half of the Fortune 500 companies
When Homeland Security advised all federal government departments that they needed to implement a new email security policy to reduce incoming spam and phishing emails, three-quarters of all federal domains were compliant by the deadline given. That is significantly more than the Fortune 500 achieved over the same time period. According to new research, just half of the Fortune 500 have implemented DMARC—or domain-based message authentication, reporting, and conformity policy. DMARC policies are used by email systems to verify the authenticity of an email sender and ensure that it is not spoofing another domain. Depending on the DMARC settings, an email system can either monitor, quarantine, or completely reject fake emails, reducing the number of phishing emails that arrive in your business mailbox. According to the statistics, 51% of the Fortune 500 or the world's richest corporations are already adopting DMARC. This is an improvement from around one-third, which was the estimate a year ago, but it still lags behind the federal government's adoption of DMARC. However, just 13% of those businesses have quarantine or reject policy in place, which