The State of DMARC – Fortune 500 vs Alexa 1000

DMARC adoption is accelerating. From the initial launch in 2012 by email inbox providers trying to protect their users to large companies looking to improve email delivery, DMARC has achieved worldwide adoption. However, new technology like DMARC goes through a cycle of adoption, and DMARC appears to be lagging among companies that would be typical targets for spoofing, spamming and hacks – Fortune 500 and Alexa 1000 domains.

Print

MxToolbox’s State of DMARC Adoption is a periodic evaluation of how inbox providers, businesses and government organizations are progressing in adopting DMARC to protect their inbound and outbound email.  As your expert in email deliverability, MxToolbox is committed to helping you protect your email so that your business can thrive.  DMARC adoption is paramount to improving your email deliverability.  Read more.

DMARC is the key to improving Email Deliverability!

Email is the key to your customer communication strategy.  But, what is your email reputation?

Setting up and managing your DMARC configuration is the key to getting insight into your email delivery.  MxToolbox is the key to understanding DMARC.

MxToolbox Delivery Center gives you:

  • Who is sending phishing email purporting to be from your domain
  • What is the reputation of your domains and delegated IPs
  • Where other senders are and What their reputations are
  • How your SPF, DKIM and DMARC setup is performing

Learn More

 

 

Threat Investigation in Delivery Center

Email delivery is under assault by spammers and hackers world-wide.  Your brand and domain name can be leveraged to send spoofing emails, malware and spam to your customers, your suppliers and even to random strangers.  Unfortunately, the potential for abuse is no longer restricted to larger companies as hackers and spammers attack smaller, less protected companies.  Regardless of the size of your business, you need to protect yourself.  Several small businesses using MxToolbox Delivery Center have recently discovered that as much as 90% of the email volume reportedly coming “From” their domain is spoofed, leading to blanket denial of their email delivery.  Any company can have their business completely crippled by this type of spoofing.  How do you investigate and prevent email spoofing to improve email deliverability and protect your business?

Introducing, MxToolbox Threat Investigator!

Screen Shot 2018-08-22 at 4.20.01 PM

Investigate threats to your email delivery in a consolidated interface.

Continuously striving to increase our customers’ email delivery rates, MxToolbox is excited to unveil a new product feature that will help your business achieve ideal deliverability.   With Threat Investigator, our customers get in-depth details on potential email delivery threats, including threatening IP addresses, geo-location, related domain information, reverse domain name system (DNS), autonomous system name/number (ASN), threat volume, and online reputation (MxReputation).  Threat Investigator provides everything you need to analyze current and potential email threats to email delivery and take steps to prevent these threats from impacting your business.

Screen Shot 2018-08-22 at 4.18.53 PM

Leverage ASN, Geo-location and Reverse DNS to categorize threats.

Because online communication is essential for your business, MxDelivery Center with the new Threat Investigator feature examines issues associated with outbound email, focusing on any encountered delivery difficulties. Moreover, this product identifies ongoing phishing and spoofing campaigns that threaten your brand and email reputation. Being able to recognize these threats early preserves your company name and helps overall message deliverability.

In addition, this innovative feature also provides phishing and legitimate email failure samples as references for investigation purposes. All of this is at your disposal for comparison exercises and to further enhance your familiarity with threats as they emerge.

Screen Shot 2018-08-22 at 4.32.50 PM

Threat Investigator integrates MxToolbox blacklist reputation to give you more insight.

MxToolbox’s Threat Investigator gives you unmatched awareness of threats to your company’s email practices. Your messages deserve safeguarding, and MxToolbox provides the tools necessary to protect and deliver your business email. Rely on our team of experts to help your emails get delivered by using the new Threat Investigator feature to reinforce your brand.

Existing customers: As a valued MxToolbox customer, you will have access to the Threat Investigator tool (depending on your current product subscription level). If you do not have access and would like to use this new feature, be sure to upgrade your plan to take advantage of MxToolbox’s Threat Investigator item.  Your business and your customers will greatly benefit from its addition.

The State of DMARC Adoption – Inbox Providers in 2018

Print

There is a lot of buzz surrounding DMARC right now.  And most people have questions like:

  • How many companies are adopting DMARC?
  • What is the volume of email sent to companies and governments that have adopted DMARC?
  • Is it necessary for your business?

As your expert in Email Delivery, MxToolbox is constantly looking at technologies that affect your business.  For years, the biggest worry for companies like yours was being blacklisted. Now, email delivery is more complex and requires constant evaluation of your email senders and their compliance with new technologies like SPF, DKIM and DMARC.  In our State of DMARC Adoption, we evaluate how quickly companies are adopting DMARC and how DMARC can affect your business.  Learn More.

 

INPS_DE Blacklist Offline

The INPS_DE blacklist, operated out of Germany recently decided to shut down their blacklist service due to changes in regulations. As such, we have temporarily removed them from our blacklist monitoring services. If they decide to reinstate their blacklist database we will re-evaluate their inclusion in our monitoring.

Notice of blacklist database termination from the blacklist operator:

For more than 10 years I, Christian Jung, have been working with passion and enthusiasm the inps.de DNSBL and the inps.de DNSWL. I wanted to work with these projects which have been very well received, making the internet a little bit better and also to be a small part of it.

The protection of data has always played a significant role in development. The entry into force of the basic data protection regulation DSGVO on 25.05.2018 succeeded for However, a massive insecurity and with the means available to me I can get one Legal advice, which would provide the necessary clarity, at the present time simply can not afford.

For this reason, I have decided with a heavy heart, the inps.de DNSBL for the time being “put on ice” and to offer it to the public only when there is clarity in this respect. From my DNS servers will be delivered an empty zone, so that all previously entered IP addresses to the outside are no longer registered. I thank from the bottom of my heart all those who have supported my projects in the past years so energetically supported. Without this support would be the hit rate far from being so good.

Sectoor Exitnodes shutting down

Update: We have shut down blacklist monitoring on Sectoor Exitnodes as this blacklist is in fact currently offline.

If you have received blacklist alerts regarding this list, the alerts and monitor status will be automatically corrected by our monitoring system during the next check. There is no action you need to take at this time.


Earlier today we detected abnormal behavior from the blacklist Sectoor Exitnodes. Its domain registration expired recently and their blacklist database is now showing signs it may be going offline.

We are monitoring this situation and will update this post once more details are available.

Abuse System Update

On May 9th we updated our abuse system to shutdown unauthorized and excessive access to our site and improve service to our free and paying customers.  During the update of the abuse management system all access to the site was shutdown for approximately 10 minutes instead of the shorter planned outage.

As of Noon Central US time all access has been restored.  We apologize for the inconvenience.

NoSolicitado False Positives

Blacklists operate using DNS system where a blacklist publishes a set of IP addresses that are blacklisted. We query these lists in real-time to give you a consolidated report of the blacklist reputation of and IP address. Sometimes a DNS server at a blacklist operator may get out of sync with the entire pool or the pool may get out of sync with the database. Regardless of the root cause, we always display what we receive when we query the blacklist providers’ DNS servers.

Currently, we are noticing On Friday, we noticed some issues where the Blacklist NoSolicitado is showing some IP addresses blacklisted and then quickly delisting them. These bounces are affecting customers with blacklist monitors and those searching IP addresses. We will update when there is more information.

Update:  NoSolicitado has updated their DNS and we are no longer showing false positives of listing/delisting bounces.  If you are on NoSolicitado, it is a legitimate listing.