Presentation is loading. Please wait.

Presentation is loading. Please wait.

How We Fight Against Scam

Published byRudolf Todd Modified over 5 years ago

Similar presentations

Presentation on theme: "How We Fight Against Scam"— Presentation transcript:

1 How We Fight Against Email Scam

2

3 Email is the most preferable communication channel for lots of businesses
86% of professionals use 270 million s were sent daily in 2017

4 Protection Myths Email Fraud
I use Gmail to send s from my domain, I am safe I use Security Gateway Antivirus

5 ~23% attempts are successful
sending protocol is not secure. “From:” field can be faked by hackers Average Loss 1.6 million per company ~23% attempts are successful

6 1 out of 3 businesses became a victim of CEO Fraud

7 7-day nightmare in Natfood

8 The most powerful and effective
DMARC The most powerful and effective AUTHENTICATION

9 About DMARC 100% protection from same-domain phishing attacks
Industry standard adopted by vast majority of top mailbox providers No infrastructure change, just a DNS record traffic statistics, without any content (only content of phishing s are visible)

10 Sender Policy Framework (SPF), to paraphrase RFC 7208, is a protocol that not only allows an organization to authorize hosts and networks to use its domain names when sending , but also provides a way that a receiving host can check that authorization. SPF

11 Authentication is a way to prove an email isn't forged.
Domain Keys Identified Mail (DKIM) is an authentication method designed to detect spoofing. It allows the receiver to check that an claimed to have come from a specific domain was indeed authorized by the owner of that domain DKIM Authentication is a way to prove an isn't forged.

12 DMARC Domain Message Authentication Reporting & Conformance
DMARC makes it easier to identify spam and phishing messages and keeps them out of receivers' inboxes. Both senders and receivers easily determine whether a given message is legitimately from the sender or not, and what to do if it isn’t. DMARC Domain Message Authentication Reporting & Conformance

13 How to create a DMARC record
v protocol version v=DMARC1 pct % of msg subjected to filtering pct=20 ruf reporting URI for forensic reports rua reporting URI of aggregate reports p policy for organizational domain p=quarantine sp policy for subdomains of the OD sp=reject adkim alignment mode for DKIM adkim=s aspf alignment mode for SPF aspf=r

14 How it Works

15 DMARC is so great, why isn’t everyone doing it?
Because ... DMARC requires diligence and is hard to deploy, as perfectly valid s can be blocked either

16 Best Practice Start from p=none
Change only one parameter at a time and start by DMARC first because of its reporting capabilities.

17 DMARC Aggregated Reports

18 Visualize and set up Alerts
1. DMARC

19 Benefits of DMARC Protects your brand and domain
Boost Your business reputation. Reach the inbox Visibility: See who sends s from Your domain ecosystem as a whole become more secure and more trustworthy.

20 BETTER SAFE THAN SORRY Thank You @GerasimH @AvagArakelyan

Download ppt "How We Fight Against Scam"

Similar presentations

Paul Vanbosterhaut Managing Director, Vircom Europe January 2007 ModusGate™ 4.4 Smart Email Assurance Gateway Not Just Warmed-over Open Source Technology…

Paul Vanbosterhaut Managing Director, Vircom Europe January 2007 ModusGate™ 4.4 Smart Assurance Gateway Not Just Warmed-over Open Source Technology…
Deliverability How We Get You to the Inbox. +98 % Our Deliverability routinely ranks in the high 90s. There’s another way of saying this: We Get Your.

Deliverability How We Get You to the Inbox. +98 % Our Deliverability routinely ranks in the high 90s. There’s another way of saying this: We Get Your.
DNSSEC & Email Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.

DNSSEC & Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.
© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.

© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.
1 Aug. 3 rd, 2007Conference on Email and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.

1 Aug. 3 rd, 2007Conference on and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.
Internet Phishing Not the kind of Fishing you are used to.

Internet Phishing Not the kind of Fishing you are used to.
Spam May 15 2006 CS239. Taxonomy E-mail (UBE)  Advertisement  Phishing Webpage  Content  Links From: Thrifty Health-Insurance Mailed-By: noticeoption.comReply-To:

Spam May CS239. Taxonomy (UBE)  Advertisement  Phishing Webpage  Content  Links From: Thrifty Health-Insurance Mailed-By: noticeoption.comReply-To:
Norman SecureTide Powerful cloud solution to stop spam and threats before it reaches your network.

Norman SecureTide Powerful cloud solution to stop spam and threats before it reaches your network.
Visit www.EmailDelivered.com for Email Marketing and Deliverability Tips, Tools, & Trainingwww.EmailDelivered.com.

Visit for Marketing and Deliverability Tips, Tools, & Trainingwww. Delivered.com.
Identity Based Email Sender Authentication for Spam Mitigation Sufian Hameed (FAST-NUCES) Tobias Kloht (University of Goetingen) Xiaoming Fu (University.

Identity Based Sender Authentication for Spam Mitigation Sufian Hameed (FAST-NUCES) Tobias Kloht (University of Goetingen) Xiaoming Fu (University.
CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.

CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.
© 2007 Convio, Inc. Implementation of Yahoo DomainKeys Bill Pease, Chief Scientist Convio.

© 2007 Convio, Inc. Implementation of Yahoo DomainKeys Bill Pease, Chief Scientist Convio.
1 The Business Case for DomainKeys Identified Mail.

1 The Business Case for DomainKeys Identified Mail.
B OTNETS T HREATS A ND B OTNETS DETECTION Mona Aldakheel 434920317 1.

B OTNETS T HREATS A ND B OTNETS DETECTION Mona Aldakheel
© 2007 Convio, Inc. HOW TO: Best Practices for Sending Email to Organizations Confidential for use by American Cancer Society and Convio – Copyright ©

© 2007 Convio, Inc. HOW TO: Best Practices for Sending to Organizations Confidential for use by American Cancer Society and Convio – Copyright ©
Wireless and Email Security CSCI 5857: Encoding and Encryption.

Wireless and Security CSCI 5857: Encoding and Encryption.
The impact of email-borne threats Why companies should recognise and embrace the need for change.

The impact of -borne threats Why companies should recognise and embrace the need for change.
Erik Kangas -

Erik Kangas -
Email Content Control Stewart Duncan Technical Manager.

Content Control Stewart Duncan Technical Manager.
Web Spoofing Steve Newell Mike Falcon Computer Security CIS 4360.

Web Spoofing Steve Newell Mike Falcon Computer Security CIS 4360.

Similar presentations

Ads by Google