Presidential Campaigns Reach Email Security Milestone

The 2020 U.S. presidential election has reached a significant cybersecurity milestone. For the first time, more than half of the candidates for president have domains that are protected from spoofing.

Of the 15 candidates currently in the race (as listed by the New York Times), eight are protected by DMARC policies set to enforcement.

That leaves just seven unprotected domains, of which four have configured DMARC but have left it in a monitor-only mode (a policy of “none”). This is a good start, but monitor-only mode still allows messages to be delivered that appear to come from that campaign’s domain but which are not actually authorized by the campaign.

The remaining three have no DMARC configuration at all, so they are also completely vulnerable to impersonation by spoofed emails pretending to come from them.

Read more at Valimail

Homeland Security Today

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

See Full Bio