Predict your next investment

DMARC company logo
INTERNET | Internet Software & Services / Email
dmarcanalyzer.com

See what CB Insights has to offer

About DMARC

DMARC (Domain-based Message Authentication Reporting and Conformance) is an email validation system designs to protect email domain from email spoofing, phishing scams, and cybercrimes. The company provides support, analytics, tools, email security, block malware, block phishing, analyzer, SPF, DKIM, email deliverability, and DMARC managed services. It is based in Hilversum, Netherlands.

DMARC Headquarter Location

Stationsplein 12

Hilversum, 1211 EX,

Netherlands

Latest DMARC News

CISA Considers Plan to Enhance Security for Federal Civilian Email Systems

Jan 12, 2022

The Cybersecurity and Infrastructure Security Agency is seeking technology to improve threat hunting and incident response for federal email by Listen   With many federal employees continuing to work remotely,  phishing attacks  remain a  key cybersecurity threat . The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency wants to boost its ability to secure federal email systems from phishing and other cyberattacks. Late last year, CISA, via the General Services Administration,  issued a request for information  on how it can better protect federal civilian .gov domains from cybersecurity threats. As part of that, CISA says it is exploring a protective email service, or PES, to protect federal email traffic and to conduct threat hunting and incident response. The PES would cover about 100 agencies and roughly 4 million users. In 2017 , DHS required agencies to adopt an email protection protocol called Domain-based Message Authentication, Reporting and Conformance. An industry standard, DMARC is an email authentication policy and reporting protocol that’s designed to prevent email spoofing — when malicious actors make it appear that an email is coming from someone else — which is the foundation of phishing. In early 2018, DHS officials  said they were encouraged  by the adoption of DMARC in the federal government. According to a  2021 report , 78 percent of all federal domains had published a DMARC record, and 74 percent of those had an enforcement policy to protect them from spoofing. Recently,  as Nextgov reports , “Congress has been trying to boost funding for CISA to exercise new powers that allow it to scour the entire civilian federal government for threats under the 2021 National Defense Authorization Act.” CISA Wants a More Robust Email Security Approach CISA outlined its vision for what the PES should look like. It should be cloud-based “and accessible to authorized entities via a management console and application program interfaces,” according to the RFI. The goal of the system would be to normalize and provide baseline security and visibility for federal civilian agencies’ email and to protect those systems from malicious email content. Additionally, CISA wants PES to “detect and prevent the federal enterprise email from being used as a vector for malicious threat actors against itself and non-federal entities.” PES should “provide appropriate visibility into agency email traffic to enable CISA Global Operators to conduct cyber hunt and incident response.” The system should also leverage CISA and other agencies’ data holdings “in cyber hunt, prevention, mitigation and incident response activities.” The system should provide CISA with forensic reports about email security, according to the RFI, including reports on daily, weekly or monthly threat trends. CISA also wants the ability to generate reports on trends specific to threat campaigns or departments or agencies, and the ability to identify threats based on behavioral intelligence. PES would also need to provide threat intelligence and information on specific malicious threat campaigns. According to the RFI, CISA will have some level of authority over agency email networks. “Agency email service operators and administrators will continue to perform their operational mission,” the RFI states. “They will have access to their agency PES data and additional policy settings but will not be able to override CISA globally provisioned policies.”

Predict your next investment

The CB Insights tech market intelligence platform analyzes millions of data points on venture capital, startups, patents , partnerships and news mentions to help you see tomorrow's opportunities, today.

DMARC Web Traffic

Rank
Page Views per User (PVPU)
Page Views per Million (PVPM)
Reach per Million (RPM)
CBI Logo

DMARC Rank

CB Insights uses Cookies

CBI websites generally use certain cookies to enable better interactions with our sites and services. Use of these cookies, which may be stored on your device, permits us to improve and customize your experience. You can read more about your cookie choices at our privacy policy here. By continuing to use this site you are consenting to these choices.