Google, Facebook, Microsoft, Yahoo, PayPal and others together start DMARC.org to prevent Phishing

DMARC. org is getting started by many internet companies and banks to prevent Phishing emails.

DMARC.org (Domain-based Message Authentication, Reporting and Conformance) is an unincorporated working group made up of many of the world’s leading email providers (AOL, Gmail, Hotmail, Yahoo! Mail), financial institutions and service providers (Bank of America, Fidelity Investments, PayPal), social media properties (American Greetings, Facebook, LinkedIn) and email security solutions providers (Agari, Cloudmark, eCert, Return Path, Trusted Domain Project). The group is dedicated to developing Internet standards to reduce the threat of email phishing and to improve coordination between email providers and mail sender domain owners.

DMARC.org plans to submit the DMARC specification to the Internet Engineering Task Force for standardization.

“Email phishing defrauds millions of people and companies every year, resulting in a loss of consumer confidence in email and the Internet as a whole,” said Brett McDowell, Chair of DMARC.org and Senior Manager of Customer Security Initiatives at PayPal. “Industry cooperation – combined with technology and consumer education – is crucial to fight phishing.”

“About 15 percent of all e-mail in the Gmail in-boxes comes from these organizations that have published these DMARC records,” said Adam Dawes, a Gmail product manager. “That means that these records can not be domain spoofed.”

Google, Microsoft, Yahoo, AOL, and Agari announced in November that they were doing this authentication coordination for Facebook, YouSendIt, and a few dozen other e-commerce companies and social networks. Now the effort is being expanded to include more participants. The antiphishing collaboration has been going on for 18 months between various partners, DMARC members said.

DMARC.org plans to submit the DMARC specification to the Internet Engineering Task Force for standardization.

Related News: