Email Security Blog

The Benefits of the DMARC Standard

John Wilson April 9, 2014 DMARC
Fallback Featured Image

In response to the article on PC World, Yahoo email anti-spoofing policy breaks mailing lists, we want to take the opportunity to comment on the benefits of DMARC and the important role it plays in securing companies and consumers.

2013 was a pivotal year for email security – multiple, high profile attacks that leveraged weaponized emails as an attack component finally highlighted to the world how vulnerable companies are when it comes to the email channel. Without DMARC, criminals can send an email to anyone purporting to be from any company or brand.

DMARC has been adopted by the biggest email senders on the planet and also by email receivers such as Yahoo!, Google, and Microsoft, covering 85% of the consumer inboxes in the US, stops this abuse. With DMARC, senders have control – first, senders can tell receivers when emails are authentic or not, and what to do when they are not legitimate. Second, senders can tell receivers where to send feedback regarding their messages, so the senders can understand what is or isn’t being delivered and why.

Yahoo! was an original supporter of DMARC on the receiving side. Also, by implementing DMARC on the sending side, they are joining the world’s leading brands who are putting the security interests of consumers first.

The security benefits of DMARC to companies have proven to be enormous, as noted in the press release titled Prominent Brands Cut Email Abuse by More than 50% with DMARC. In a study of DMARC data collected in early 2014, Agari found that a only a fraction of a percent of all legitimate email failed DMARC due to problems with mailing lists. The numbers show that the potential problems posed by outdated mailing list software pales in comparison to the great benefits that the DMARC standard gives to the internet community.

Older mailing list software can have interoperability issues with a new security technology like DMARC. Much of this type of software has existed for over 20 years, but can often be updated to support DMARC. As an example, the release of the popular Mailman mailing list software in Oct 2013 added settings to allow these lists to work with DMARC. In addition, highly popular “groups” services (which are essentially mailing lists) offered by many free mail services, work fine with DMARC. has a FAQ for mailing list operators that describe the benefits of using up to date mailing list software.

We encourage companies to learn more about the benefits of DMARC by leveraging the information on, Online Trust Alliance, and through our own resource center.

Leave a Reply

Your email will not be published. All fields are required.

Agari Blog Image

April 17, 2019 Fareed Bukhari

The Time is Now: Underscoring the Importance of DMARC for State and Local Governments

Scammers know that impersonating a trusted government agency is an extremely effective way to trick…

Agari Blog Image

February 26, 2019 Armen Najarian

Retail Trails Other Sectors in Adopting DMARC for Phishing Prevention

Recent research by the Agari Cyber Intelligence Division finds that the retail industry is dead…

Person Looking at DMARC Protected Email

February 19, 2019 Fareed Bukhari

DMARC Adoption Up, But 85% of Fortune 500 Remains Vulnerable to Brand Hijacking

Adoption of Domain-based Message Authentication, Reporting, and Conformance (DMARC) has seen modest growth in recent…

Agari Blog Image

October 16, 2018 Fareed Bukhari

One Year Later: Federal Mandate for Email Authentication Huge Success

Responding to BOD 18-01, agencies rally to complete the fastest sector-wide adoption of DMARC One…

Agari Blog Image

October 16, 2018 Patrick Peterson

DMARC: A 12-Month Triumph for DHS—and the Nation

Today is the deadline set by the Department of Homeland Security for all executive branch…

mobile image