Cybercriminals consistently take advantage of how easy it is to impersonate an organization’s email to dupe their customers, supply chain and even their own employees. Domain spoofing, where an attacker essentially forges your email to make it look as though their communication has come from a trusted source, is a common tactic used in phishing campaigns and business email compromise (BEC), the use of which grew by 54% and 67% respectively in the last 12 months alone. It’s a big reason why email continues to be the tool of choice for cyber attackers.
Ignoring this problem can significantly impact your brand reputation, business relationships and the successful delivery of your own outbound business email. To successfully combat this type of attack you need full visibility into all email senders using your domain to identify legitimate versus fraudulent senders.
Enter Domain-based Message Authentication Reporting and Conformance (DMARC).
 Mimecast State of Email Security Report, 2019
DMARC is an email validation system designed to uncover anyone using your domain without authorization, and ultimately block delivery of all unauthenticated mail. It builds on existing SPF and DKIM authentication techniques by adding a critical element, reporting.
DMARC reports provide detailed information about who is sending email using your domains. Using this information, you can specify what to do when emails fail DMARC authentication checks.
DMARC is a key tool in defeating email impersonation, and is part of a broader defensive arsenal. DMARC is the most effective way to combat direct domain spoofing most often used to target those outside your perimeter. But there are other types of impersonation too, including those using similar domains to yours, that DMARC cannot detect or stop. These can target customers and your supply chain and are also often used to trick your own employees. Mimecast offers end-to-end protection as an email sender and receiver and delivering perimeter and beyond perimeter protection.
Combine best-of-breed tools from Mimecast to better protect your organization, brand, customers and supply chain.
User-friendly aggregate reports and charts for faster analysis and DMARC policy enforcement
Forensic reports to help track down malicious email sources
Quick and simple DNS updates with DMARC record setup wizard
Unlimited users, domains and domain groups to ensure full coverage and a more effective project
Summary daily and weekly reports to track progress over time
Enhanced security with two-factor authentication
Check DNS changes over time and get proactive email prompts when a record changes
Managed Service option helps to de-risk and deliver DMARC enforcement in the shortest possible time, with proven deployment and project management expertise