There are a lot of folks in the email industry that take issue with my stance that DMARC is not a viable solution to phishing. DMARC, at it’s absolute best, addresses one tiny, TINY piece of phishing. Look at this message I received today. My mail client presents this as from Quickbooks and hides the actual from email address from me. Most mail clients do that by default. It is possible to...
A security researcher has identified a rendering flaw that allows for “perfect” phishing emails. From his website: Mailsploit is a collection of bugs in email clients that allow effective sender spoofing and code injection attacks. The spoofing is not detected by Mail Transfer Agents (MTA) aka email servers, therefore circumventing spoofing protection mechanisms such as DMARC...
There’s been extensive and ongoing development of email through the years, but much of it has been behind the scenes. We were focused on the technology and safety and robustness of the channel. We’re not done yet, but things are much better than they were. The good part of that is there is some space to make improvements to the inbox as well. Over the last few months there have been a...
We’re in the thick of hiring and next week is Thanksgiving, so blogging is going to be very light for the next two weeks. One thing I have noticed is that lately there are attempts to “change how people interact with email.” Google released their Inbox product. And today I saw a post about an IBM attempt to change email and how people use it as a tool. I find as I juggle more...
Fastcompany reports that AOL has a new webmail client “Alto” that changes how email is read and received. Alto is divided into two main windows: a streamlined column of mail that matters, and a grid of tiles for navigating leftover inbox clutter. In Alto, many messages and files are automatically and neatly aggregated into tiles of common categories: for photos, attachments, social...
According to data published by Litmus this week.
RSS - Posts