A new Valimail survey shows that the vast majority of organizations have not properly implemented open standards for email authentication, leaving 90% of firms vulnerable to spam and phishing attacks involving email spoofing.
According to the survey, only 49% of companies keep Domain-based Message Reporting, Authentication & Conformance (DMARC) records, and just a little over half (55%) of those have a proper policy for DMARC implementation that actually provides protection against spoofing attacks. Another standard, the Sender Policy Framework (SPF), has been properly implemented by 78% of tech companies, the study found.
Read more: 90% of large tech companies vulnerable to email spoofing