We recently teamed up with Farsight Security to analyze data on the current state of email security, email fraud and DMARC adoption. Our inaugural “Email Fraud and DMARC Adoption Trends Report” summarizes the state of email authentication across industries from the second half of 2017. This is the only DMARC focused report that incorporates data from Agari’s Email Threat Center as well as Farsight DNSDB, the world’s largest real-time and historical database of DNS records.
The report exposes some distinct trends in the state of email security, confirmed many theories and revealed some surprising facts. A few examples:
- Low Global Enforcement Rates – Farsight Security DNS intelligence reveals global DMARC enforcement rates are approximately 26 percent or lower across the universe of internet domains. Agari customers (tracked by the Agari Threat Center) have achieved much higher protection rates: 99 percent in retail, 95 percent in technology and 89 percent in finance.
- Healthcare is Most Targeted Industry – Among Agari customers, 92 percent of healthcare industry domains are targeted by domain name spoofing. The majority of messages (58 percent threat rate) sent on behalf of the healthcare industry are malicious or unauthorized, undermining the trust in medical providers, insurance companies and pharmaceutical brands. It is not surprising that healthcare is the most targeted industry since it is also the vertical least protected by DMARC, with protected domains hovering only between 10 – 20 percent.
- Government Domains are Under Attack – The government sector is the second most attacked industry, with 87 percent of domains target. One out of ten messages (12 percent threat rate) sent on behalf of federal domains are malicious or unauthorized – significantly higher than the global average of three percent.
The breadth of the data available from Farsight DNSDB also gave an illuminating peek into the relative market share of DMARC implementation services vendors. When we tallied up the aggregate reporting email addresses used of DMARC-carrying domains identified in Farsight DNSDB, we were pleased to see that Agari was by far the leader in terms of domains protected or monitored.
More importantly, Agari also led the pack when it came to the percentage of domains with enforcement policies. Over 70% of domains using Agari were at a p=reject policy, versus 40% with the next nearest vendor.
To learn more about the state of email security, email fraud and DMARC adoption trends get the report.