How to setup DMARC

Before we get to “how to setup DMARC?” we should take a step back and understand the concept of DMARC and how it has emerged as the most trending solution in the world of information and email security in the past few years. Organizations can be considered as huge email exchanging bodies with major influx in email flow across their client-base, and among  their business partners and employees.

However, while running your email marketing campaigns, it is difficult to monitor whether all the emails being sent from your domain are legitimate. Every 14 seconds, an organizational domain is spoofed by an attacker to send out phishing emails to receivers who trust them. This is why email authentication is a mandatory addition to your security.

Why is DMARC Needed in the Current Situation?

The FBI’s Internet Crime Complaint Center of 2020 (FBI IC3 Report 2020) reported that 28,500 complaints were received in the US pertaining to email-based attacks. The FBI investigated e-mail scam attacks describing the Coronavirus Aid, Relief, and Economic Security Act (CARES Act), which strived to provide assistance to small businesses during the pandemic. These attacks specifically targeted unemployment insurance, Paycheck Protection Program (PPP) loans, and Small Business Economic Injury Disaster Loans.

Did You Know?

  • 75% of organizational domains from all around the world were spoofed in 2020 to send phishing emails to victims
  • 74% of those phishing campaigns were successful
  • The frequency of BEC has increased by 15% since last year
  • IBM reported that one in every 5 companies in the last year has experienced data breaches caused by malicious emails

Check your domain right now to see how protected you are against email fraud!

How to Setup DMARC Manually?

In order to learn how to setup DMARC, you need to start by creating a DMARC record. As complicated as it may sound, the process is comparatively much simpler! DMARC is a DNS TXT (text) record that can be published in your DNS to configure the protocol for your domain.

DMARC record example:

v=DMARC1; p=reject; adkim=s; aspf=s; rua=mailto:[email protected]; ruf=mailto:[email protected]; pct=100; fo=0;

Note: While beginning your email authentication journey, you can keep your DMARC policy (p) at none instead of reject, to monitor your email flow and resolve issues before shifting to a strict policy.

Learn how to publish DMARC record

How to Setup DMARC Easily with PowerDMARC

With PowerDMARC, you don’t need to understand the mechanisms in depth to manually create your DMARC record, as we do it automatically on our platform. All you need to do is use our free DMARC record generator tool and fill in your desired criteria. Click on Generate Record and instantly create an error-free DMARC record to publish in your DNS:

After creating your record, simply open your DNS management console, navigate to your desired domain and paste the TXT record. Save changes to the process and you are done!

How to Leverage DMARC to Prevent Domain Spoofing

Note that if you are configuring DMARC to stop your domain from being Spoofed and keep phishing and BEC attacks at bay, we recommend you the select the following criterion while generating your DMARC record with our DMARC record generator tool:

Set your DMARC policy to p=reject

When you are opting for DMARC enforcement at your organization by choosing a reject policy, this means that whenever an email sent from your domain fails DMARC authentication checks and fails DMARC, the malicious email would be instantly rejected by the receiving MTA, instead of being delivered to your receiver’s inbox.

Another factor that you would want to consider is gaining visibility on your email flow and monitoring emails passing and failing authentication. DMARC reporting ensures that you never miss a malicious activity on your domain and you stay informed at all times. To enjoy the benefits of email authentication, and setup DMARC in a way that would effectively protect your domain, sign up with DMARC analyzer today!