Why Every Business Needs DMARC
Cyber-threats in 2021 have reached shocking heights. There are numerous new phishing emails related to COVID-19. According to Verizon, 94% of malware is delivered by email, and remote working makes companies more vulnerable to security breaches than ever before.
Knowing such statistics one could wonder why so many companies have not improved their email security with DMARC? Yet, according to dmarc.org only 23.5% of those who even implemented it, have reached a ‘reject’ policy. With GlockApps DMARC report analyzer you can create a DMARC record in less than 5 minutes and start moving towards the ultimate security right away.
What is DMARC?
DMARC stands for Domain-based Message Authentication, Reporting & Conformance. It becomes your ultimate layer of email protection, after SPF and DKIM. In layman’s terms during email authentication first mail server checks SPF and DKIM authentication, and then DMARC runs alignment of those two protocols. According to the policy type (none, quarantine or reject) DMARC decides on what to do with every email, whether to let it to the inbox, quarantine it or reject entirely.
Read also: What is DMARC: Email Security with DMARC, SPF, and DKIM
Business Size Doesn’t Matter
There is one myth about online scammers. It is widely believed that only large businesses, major corporations, and governments fall victim to email phishing and spoofing. And it feels logical because that’s where the money is. However, statistics tell us otherwise:
- 43% of SMBs don’t have any protection plans when it comes to cybersecurity;
- In 2019 28% of the breaches were Small Businesses;
- For more than 30% of small businesses, phishing is a top threat.
Among the most common reasons why small and medium businesses don’t take care of their email security is a lack of resources — finances, personnel, time, etc. And the wrong belief that attackers would target larger goals.
So, in this light, corporations and larger businesses must have DMARC in place and running on the ‘reject’ policy? Unfortunately no. According to the Agari report, among Fortune 500 only 33% have a DMARC record, and only 8% have activated it.
How so? Mostly because large corporations have numerous email streams, subdomains, and third-party organizations involved in the email-sending process. One mistake in a record could lead to a massive breakdown and intricacies of implementing higher levels of DMARC security (‘quarantine’ and ‘reject’ policies) could lead to blocking legitimate emails. And such interruption of important email communication could lead to financial and reputational losses.
Read also: DMARC Adoption in 2021: What’s the Problem?
What Benefits Does DMARC Have
Whatever the size of your business — DMARC provides universal benefits for all.
Read the full story on GlockApps blog.
