DMARC in Healthcare: Lots of Work to Be Done
Study: Little Adoption of Standard So Far to Fight Phishing Threat
Adoption of the Domain-based Message Authentication, Reporting & Conformance – or DMARC – standard is very low in the healthcare sector, and broader use could greatly reduce phishing risks, according to a new study.
“By design, DMARC validates an email sender and based on how DMARC records are configured in DNS, email messages not aligning with DMARC could be quarantined for further inspection or outright rejected,” says Keith Fricke, partner and principal consultant at tw-Security. “Therefore, phishing attacks would likely become less successful. A reduction in phishing attacks would correlate to a decrease in ransomware, malware-infected attachments and links to malicious web sites.”