Welcome!

News Feed Item

Return Path Research Finds that DMARC is Effective in Blocking Millions of Potentially Fraudulent Messages from 60% of the World’s Mailboxes

Return Path, the global leader in email intelligence, today announced, in partnership with DMARC.org, that the DMARC standard is giving top senders a new level of control in blocking potentially fraudulent messages from a majority of the world’s mailboxes. In fact, DMARC is now deployed at mailbox providers representing 60% of the world’s mailboxes and been adopted by 10 of the top 20 sending domains, representing a high volume of daily traffic into receiving networks. Because of this, more than 325 million messages were blocked from consumer inboxes in November and December of 2012, according to data from Return Path and other members of DMARC.org. In one recent example, DocuSign used the DMARC standard to thwart an active phishing attack.

DMARC, which stands for Domain-based Message Authentication, Reporting and Conformance, was launched last year by a consortium of top mailbox providers and senders including Google, Microsoft, Yahoo!, Facebook and PayPal. DMARC uses existing authentication protocols – Sender Policy Framework (SPF) and DKIM – to enable brands to publish policies that reject messages that are not properly authenticated. DMARC adds deeper value by enabling mailbox providers to send reporting back to companies to let them know when their domains are not authenticated properly. This helps companies quickly detect phishing attacks and keep their systems running properly.

DocuSign Uses DMARC to Fight Fraud

DocuSign, as the global standard for eSignature, has built a trust network of more than 27 million users in 188 countries who use the company’s eSignature transaction management platform to finish business faster. The company helps individuals and businesses of all sizes and industries accelerate transactions to increase speed to results, reduce costs, and delight customers.

With the industry’s most robust security, DocuSign is on the cutting edge of using innovative tools like the DMARC standard to protect its brand and global network of users. An advocate for using Sender Policy Framework (SPF) for authentication, DocuSign uses DMARC to monitor messages from its sending domains. When fraudulent emails recently began appearing via DMARC, the company quickly saw that its brand and users were the target of a phishing attack, and took immediate action. DocuSign published an updated DMARC policy that directed participating mailbox providers to quarantine all messages that failed authentication, thereby stopping suspicious messages from reaching inboxes.

“DocuSIgn offers the industry’s most trusted eSignature platform,” said Joan Ross, Chief Security Officer, DocuSign. “DMARC allows us to rapidly identify any attacks against the DocuSign brand and protect our global network of users so that they can continue to rely on DocuSign to finish business faster safely and securely.”

As a security thought leader, DocuSign recently blogged about DMARC and other best practices in a series of blog posts designed to help the company’s users further protect their information and data.

DocuSign isn’t alone: As malware spam attacks are on the rise targeting high-profile companies with trusted brands, many companies are turning to this new defensive tool to fight back. Using the DMARC standard, these companies direct mailbox providers to block or quarantine unauthenticated mail attributed to their domains. This can prevent addressees from receiving deceptive phishing messages that falsely appear to be from what are made to look like familiar senders.

Return Path’s Secure.EQ suite of anti-phishing solutions includes tools that help senders implement the DMARC standard and protect their brands from phishing attacks. In another recent example, Publishers Clearing House was able to use Return Path’s Domain Secure system to block 350,000 messages from bogus forwarding services and infrastructure that did not belong to PCH. Blocking these messages from inboxes protects hundreds of thousands of consumers from harmful messages – something not possible before DMARC.

“As longtime advocates for email authentication and co-founding members of DMARC.org, we’re encouraged by examples like these,” said George Bilbrey, President of Return Path. “As more senders recognize the effectiveness of DMARC in their battle against fraud, consumer trust across the email channel will build. Top brands are already leading the way – their success should inspire senders everywhere to take these simple steps to make the entire email ecosystem safer and more secure.”

Resources:

DMARC.org anniversary release:
Publishers Clearing House Reduces Phishing Threats with DMARC
Return Path DMARC page:
http://www.returnpath.com/solution-content/dmarc-support/

About Return Path

Return Path is the worldwide leader in email intelligence. We analyze more data about email than anyone else in the world and use that data to power products that ensure that only emails people want and expect reach the inbox. Our industry-leading email intelligence solutions utilize the world’s most comprehensive set of data to maximize the performance and accountability of email, build trust across the entire email ecosystem and protect users from spam and other abuse. We help businesses build better relationships with their customers and improve their email ROI; and we help ISPs and other mailbox providers enhance network performance and drive customer retention. Information about Return Path can be found at: www.returnpath.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
DXWorldEXPO LLC announced today that Telecom Reseller has been named "Media Sponsor" of CloudEXPO | DXWorldEXPO 2018 New York, which will take place on November 11-13, 2018 in New York City, NY. Telecom Reseller reports on Unified Communications, UCaaS, BPaaS for enterprise and SMBs. They report extensively on both customer premises based solutions such as IP-PBX as well as cloud based and hosted platforms.
Traditional on-premises data centers have long been the domain of modern data platforms like Apache Hadoop, meaning companies who build their business on public cloud were challenged to run Big Data processing and analytics at scale. But recent advancements in Hadoop performance, security, and most importantly cloud-native integrations, are giving organizations the ability to truly gain value from all their data. In his session at 19th Cloud Expo, David Tishgart, Director of Product Marketing ...
Enterprises are universally struggling to understand where the new tools and methodologies of DevOps fit into their organizations, and are universally making the same mistakes. These mistakes are not unavoidable, and in fact, avoiding them gifts an organization with sustained competitive advantage, just like it did for Japanese Manufacturing Post WWII.
The best way to leverage your Cloud Expo presence as a sponsor and exhibitor is to plan your news announcements around our events. The press covering Cloud Expo and @ThingsExpo will have access to these releases and will amplify your news announcements. More than two dozen Cloud companies either set deals at our shows or have announced their mergers and acquisitions at Cloud Expo. Product announcements during our show provide your company with the most reach through our targeted audiences.
When building large, cloud-based applications that operate at a high scale, it's important to maintain a high availability and resilience to failures. In order to do that, you must be tolerant of failures, even in light of failures in other areas of your application. "Fly two mistakes high" is an old adage in the radio control airplane hobby. It means, fly high enough so that if you make a mistake, you can continue flying with room to still make mistakes. In his session at 18th Cloud Expo, Le...
Transformation Abstract Encryption and privacy in the cloud is a daunting yet essential task for both security practitioners and application developers, especially as applications continue moving to the cloud at an exponential rate. What are some best practices and processes for enterprises to follow that balance both security and ease of use requirements? What technologies are available to empower enterprises with code, data and key protection from cloud providers, system administrators, inside...
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
Daniel Jones is CTO of EngineerBetter, helping enterprises deliver value faster. Previously he was an IT consultant, indie video games developer, head of web development in the finance sector, and an award-winning martial artist. Continuous Delivery makes it possible to exploit findings of cognitive psychology and neuroscience to increase the productivity and happiness of our teams.
To Really Work for Enterprises, MultiCloud Adoption Requires Far Better and Inclusive Cloud Monitoring and Cost Management … But How? Overwhelmingly, even as enterprises have adopted cloud computing and are expanding to multi-cloud computing, IT leaders remain concerned about how to monitor, manage and control costs across hybrid and multi-cloud deployments. It’s clear that traditional IT monitoring and management approaches, designed after all for on-premises data centers, are falling short in ...
"Calligo is a cloud service provider with data privacy at the heart of what we do. We are a typical Infrastructure as a Service cloud provider but it's been designed around data privacy," explained Julian Box, CEO and co-founder of Calligo, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
Poor data quality and analytics drive down business value. In fact, Gartner estimated that the average financial impact of poor data quality on organizations is $9.7 million per year. But bad data is much more than a cost center. By eroding trust in information, analytics and the business decisions based on these, it is a serious impediment to digital transformation.
With more than 30 Kubernetes solutions in the marketplace, it's tempting to think Kubernetes and the vendor ecosystem has solved the problem of operationalizing containers at scale or of automatically managing the elasticity of the underlying infrastructure that these solutions need to be truly scalable. Far from it. There are at least six major pain points that companies experience when they try to deploy and run Kubernetes in their complex environments. In this presentation, the speaker will d...
Discussions of cloud computing have evolved in recent years from a focus on specific types of cloud, to a world of hybrid cloud, and to a world dominated by the APIs that make today's multi-cloud environments and hybrid clouds possible. In this Power Panel at 17th Cloud Expo, moderated by Conference Chair Roger Strukhoff, panelists addressed the importance of customers being able to use the specific technologies they need, through environments and ecosystems that expose their APIs to make true ...
In an era of historic innovation fueled by unprecedented access to data and technology, the low cost and risk of entering new markets has leveled the playing field for business. Today, any ambitious innovator can easily introduce a new application or product that can reinvent business models and transform the client experience. In their Day 2 Keynote at 19th Cloud Expo, Mercer Rowe, IBM Vice President of Strategic Alliances, and Raejeanne Skillern, Intel Vice President of Data Center Group and G...
The current age of digital transformation means that IT organizations must adapt their toolset to cover all digital experiences, beyond just the end users’. Today’s businesses can no longer focus solely on the digital interactions they manage with employees or customers; they must now contend with non-traditional factors. Whether it's the power of brand to make or break a company, the need to monitor across all locations 24/7, or the ability to proactively resolve issues, companies must adapt to...