Skip to main content

What marketers need to know about DMARC


Last month, reports surfaced that Google and Microsoft this year plan to update their policies related to DMARC (Domain-based Message Authentication, Reporting & Conformance), a change that could cause some brands’ deliverability rates to plummet.

Change is coming. DMARC authentication is becoming an important part of the email marketing landscape, and if marketers aren’t up to speed, it could spell disaster for their brands.

What is DMARC?

Our research shows that on any given day, 146 million fraudulent emails are sent to internet users around the world. To counter phishing attempts and other scams, the email industry created DMARC, an authentication technology that prevents fraudulent emails from reaching users’ inboxes.

DMARC works by equipping email recipients with the ability to determine if an email has originated from a legitimate sender. With DMARC technology in place, senders can notify recipients that their messages are protected by SPF (Sender Policy Framework) and/or DKIM (DomainKeys Identified Mail) standards.

If emails fail the authentication process, users are instructed how to proceed, eliminating their exposure to fraudulent messages. Since recipients can also report back to the sender about received messages, legitimate senders gain insights about spoofing attempts and the reasons behind failed message deliveries.

In essence, DMARC is an effective technology for ensuring the validity of the “from” field in a message header. Fraudsters are less likely to target brands that use DMARC, and those that do are typically unsuccessful.


DMARC policies were pioneered by PayPal in 2007. The payment provider then developed email authentication technologies in partnership with major internet service providers (ISPs). The authentication methodology quickly spread to other online companies and became a primary tool for countering spoofed domain email attacks.

In 2015, 35 percent of the messages received by large mailbox providers were protected by DMARC authentication — a percentage that continues to rise as more and more service providers embrace the DMARC standard.

Major ISPs like Yahoo, AOL, Google and Microsoft are either using or will use DMARC to authenticate their domains and neutralize phishing attacks.

But DMARC policies mean that ostensibly, only the ISPs can send email marketing materials from their domains. So the upcoming policy changes from Google and Microsoft could make it difficult for marketers to execute email campaigns from Gmail, Hotmail, Outlook, Live and MSN email accounts.

As DMARC policies become more widespread, brands must begin sending emails from their own domains. But even that’s not enough. To counter the ever-present threat of fraudulent activity, brands will need to consider implementing DMARC authentication, if they haven’t done so already.

How DMARC benefits brands

These days, phishing and spoofing scams are a fact of life for brands and consumers. For example, in the financial sector, banks have been hit hard by phishing scams that distribute convincing emails to consumers, asking them to provide financial account information and PIN numbers.

E-commerce is another industry that experiences a high volume of fraudulent email attempts. Online shoppers regularly receive emails that invite them to click a malicious link or enter account login credentials and credit card information.

In many cases, phishing scam victims are older adults who don’t fully understand the risks. With record numbers of baby boomers using the internet for shopping and financial transactions, it’s more important than ever for brands to aggressively protect their customers from fraudulent activities.

DMARC authentication mitigates the threat of phishing scams by displaying brand icons when messages arrive in user inboxes and other measures that ensure branded emails have actually been sent by the brand.

Additional benefits of DMARC authentication include:

  1. Improved deliverability. Deliverability is a prerequisite for email marketing success. When implemented on the brand’s domain, DMARC authentication improves deliverability rates and increases the likelihood that brand messages will be seen by the right people at the right times.
  1. Increased confidence. Consumers don’t trust brands that experience frequent security issues. When customers have to constantly reset their account information due to spoofing or other attacks, they lose faith in the brand. DMARC authentication restores trust and strengthens brand relationships by eliminating incidents of email-based fraud.
  1. Better engagement. The payoff for increased customer confidence is engagement. In an online environment where security threats are an everyday occurrence, brands that consistently deliver safe email marketing campaigns are rewarded with more clicks, conversions and purchases.
  1. Total visibility. DMARC technology also allows marketers to monitor how the brand is being used across the internet. If an unauthorized sender spoofs the brand or sends emails disguised as brand content, you’ll know about it. As a result, marketers that use DMARC authentication enjoy greater control and can proactively address fraudulent activity when it occurs.

Email-based scams aren’t going away any time soon. By understanding DMARC authentication and implementing it on their domains, marketers can protect both their brands and their customers from common email scams.

Even better, DMARC authentication helps marketers strengthen relationships with customers and achieve important advantages in today’s increasingly hazardous digital marketplace.

via Marketing Land


Popular posts from this blog

How to Get SMS Alerts for Gmail via Twitter

How do you get SMS notifications on your mobile phone for important emails in your Gmail? Google doesn’t support text notifications for their email service but Twitter does. If we can figure out a way to connect our Twitter and Gmail accounts, the Gmail notifications can arrive as text on our mobile via Twitter. Let me explain:Twitter allows you to follow any @user via a simple SMS. They provide short codes for all countries (see list) and if you text FOLLOW to this shortcode following by the  username, any tweets from that user will arrive in your phone as text notifications. For instance, if you are in the US, you can tweet FOLLOW labnol to 40404 to get my tweets as text messages. Similarly, users in India can text FOLLOW labnol to 9248948837 to get the tweets via SMS.The short code service of Twitter can act as a Gmail SMS notifier. You create a new Twitter account, set the privacy to private and this account will send a tweet when you get a new email in Gmail. Follow this account …

Instagram Story links get 15-25% swipe-through rates for brands, publishers

Instagram may arrived late as a traffic source for brands and publishers, but it’s already showing early signs of success, driving new visitors to their sites and even outperforming its parent company, Facebook.For years brands, publishers and other have tried to push people from the Facebook-owned photo-and-video-sharing app to their sites. Outside of ads and excepting a recent test with some retailers, Instagram didn’t offer much help to companies looking to use it to drive traffic. So they had to find workarounds. They put links in their Instagram bios. They scrawled short-code URLs onto their pictures. And they typed out links in their captions.Then last month Instagram finally introduced an official alternative to these hacky workarounds: the ability for verified profiles to insert links in their Instagram Stories.Almost a month after the launch, 15% to 25% of the people who see a link in an Instagram Story are swiping on it, according to a handful of brands and publishers that h…

Five great tools to improve PPC ads

Every digital marketer wants to reach the top position on the search engine results. However, if you’ve recently launched a new website or your niche is saturated, starting with paid search ads sounds like a good idea.Strategically created PPC campaigns can drive leads, sales or sign-ups to your websites. You know what? In fact, businesses earn an average of $8 for every dollar they spend on Google Ads.Optimizing PPC campaigns is not easy, but it’s very powerful if you do it properly. Just like SEO, it is essential to conduct extensive keyword research, optimize ad copy, and design high-converting landing pages.Fortunately, there are a lot of effective PPC tools that will help you analyze your competitors’ PPC strategies, figure out tricks in their campaigns, and improve your PPC campaigns.If you are ready to take an evolutionary leap in your PPC advertising, take a look at my list of five amazing tools to save you time, give you crucial insights, and raise money for your business.Fiv…