A quarter of US gov domains FAIL on email security
A year ago, DHS mandated that all federal government domains should have the strongest DMARC policy. (In case you’ve been living under a rock, it’s a way to help solve phishing.)
The deadline was last week. Sadly, many organizations still haven’t complied—roughly a quarter either haven't turned on the “reject” DMARC option or haven’t even bothered to set it up.
Your tax dollars at work (or not). In this week’s Security Blogwatch, we don’t like spam.