Sign in

This article originally appeared on the Agari Email Security blog.

By Brent Sleeper, senior product manager, Agari

In this post, we will look at five keys to DMARC success organizationally and in enterprise-wide implementation.

Domain-based Message Authentication, Reporting, and Conformance (DMARC) is a standard email authentication protocol that plays an essential role in any organization’s cybersecurity arsenal. That’s because DMARC is key to protecting your business, customers, and partners from email attacks that spoof your domain and hijack your brand. In fact, strong DMARC enforcement is so effective, it can stop domain spoofing practically overnight.

So it’s a little shocking…

By Brent Sleeper, senior manager of product marketing, Agari

This article originally appeared on the Email Security Blog.

Which should you use: DKIM, SPF, or both? We’re going to cover these terms, when you should use them, what they do — and how best to protect your email domains.

Is it Either/Or — or Both?

Is it necessary to use both SPF and DKIM? While not mandatory, it’s highly recommended to use both SPF and DKIM to protect your email domains from spoofing attacks and fraud while also increasing your email deliverability.

At a time when millions of corporate employees remain working from home due to…

By Crane Hassold, Senior Director of Threat Research at Agari

This story originally appeared on the Email Security Blog

Sophisticated new threat actors, evolving phishing tactics, and a $800,000 business email compromise (BEC) scam in the second half of 2020 all signal big trouble ahead, according to new analysis from the Agari Cyber Intelligence Division (ACID).

As captured in our H1 2021 Email Fraud & Identity Deception Trends Report, successful attacks on Magellan Health, GoDaddy, and the SolarWinds “hack of the decade,” one thing has become distressingly clear. Phishing, BEC, and other advanced email threats continue to be one of…

By Art Chavez, senior product marketer, Agari

CISOs and their teams are about to get some serious performance enhancers in their high-stakes race against email security threats.

According to the FBI, phishing campaigns, business email compromise (BEC) scams, and other advanced email attacks have resulted in $26 billion in business losses over the course of three years. Then 2020 happened.

With 75 million corporate employees even now still working from home due to distancing mandates, the scramble to secure an ever-expanding attack surface against a growing universe of threat actors has made actionable threat data as valuable as it is…

This story first appeared on the Agari Email Security Blog.

By Armen Najarian, Chief Identity Officer, Agari

If you haven’t deployed Domain-based Messaging Authentication, Reporting, and Conformance (DMARC) to protect your brand from being impersonated in phishing scams, there are pressing reasons to jump on it now.

Without a doubt, these are extraordinary times for individuals and organizations alike as we’ve been forced to change the way we work, shop, play, and live seemingly overnight, and for far longer than most imagined. But assuming that cybercriminals have been waiting around for you to catch your breath is wishful thinking.


This article originally appeared on the Agari Email Security Blog

By Michael Cichon, Vice President, Digital Marketing, Agari

With marketers more dependent on digital channels, many may accelerate their tests of Google’s AMP for Email technology in search of an edge. But without an email protocol called Domain-based Messaging Authentication, Reporting and Conformance (DMARC), fraudsters could weaponize the trust customers expect from your brand for their own evil intentions and put consumers and businesses at risk.

The resulting damage to brand reputation and email marketing revenue streams could prove devastating at the exact moment they’re needed most.

Officially rolled out…

This article originally appeared on the Agari Email Security blog.

By Crane Hassold

Scams related to COVID-19 helped fuel a 65% increase in employee-reported phishing attacks during the first half of 2020, according to our mid-year Phishing Incident Response Survey of SOC professionals at 13 large organizations spanning a cross-section of industries.

Even before the outbreak, phishing was implicated in nearly 7 in 10 corporate data breaches, prompting many organizations to arm employees with the ability to forward suspect emails to SOC teams at the push of a button.

But the survey, part of our H2 2020 Email Fraud &…

This post originally appeared on the Agari Email Security blog.

By Armen Najarian, CMO and Chief Identity Officer, Agari

The first half of 2020 saw 25 additional Fortune 500 companies adopt Domain-based Messaging, Reporting & Conformance (DMARC) — bringing the total to 20% of organizations within the index, according to our H2 2020 Email Fraud and Identity Deception Trends Report.

Which is salutatory, to be sure. …

This article originally appeared on the Email Security blog.

By Michael Paiko, Vice President, Product Marketing

Coronavirus-related phishing attacks and business email compromise (BEC) scams skyrocketed 3,000% from mid-March through early June, according to mid-year analysis from the Agari Cyber-Intelligence Division (ACID).

As chronicled in our H2 2020 Email Fraud & Identity Deception Trends Report, the year began with expectations of record-breaking profits for email threat groups — long before most of us had ever even heard of SARS-CoV-2.

For one thing, successful email scams have been growing far less dependent on technological know-how than on skillful social engineering. For…

This article originally appeared on the Email Security Blog.

By Patrick R. Peterson, Founder and CEO, Agari

A seismic shift in the email threat landscape has CISOs bracing for sophisticated new forms of business email compromise (BEC) scams, as phishing’s center of gravity begins to tilt from West African email scammers toward Russian and Eastern European cybercrime lords.

As detailed in our new threat actor dossier on a threat group we call Cosmic Lynx, the Agari Cyber Intelligence Division (ACID) has uncovered the first-ever reported Russian cybercriminal organization to conduct BEC campaigns. …


Agari is the Trusted Email Identity Company™, protecting companies and people from phishing and socially-engineered email attacks.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store