DMARC Monitoring

DMARC, or Domain-based Message Authentication, Reporting and Conformance, works with Sender Policy Framework (SPF) and Domain Keys Identified Mail (DKIM) to verify that email senders are authorised to send from a particular domain. If an email sender can’t be verified – this is usually an indication that their server has been used to spoof an email domain for phishing or spam.

Cyberwebnic has been providing DMARC monitoring services for the past 5 years as a natural extension of our core phishing detection and takedown services. We provide DMARC configuration, monitoring and reporting for takedown of offending mail servers and identified phishing URLs by human analysts in our 24×7 Security Operations Centre (SOC).

DMARC Reporting and Takedown

Cyberwebnic provides a DMARC record configuration assistant to prepare DMARC records for DNS, DMARC data processing of aggregate and forensic data to identify originating mail servers and overall send/fail rates. We also provide data visualisation through our suite of reports. Identified offending mail servers, or phishing sites identified from reporting are reviewed by our analysts to integrate with our takedown services.

Fast Site Takedown (Incident Response)

We do much more than simply send an automated single email to an abuse mailbox. Our team analyses each phishing site to determine all possible parties involved and work tirelessly to contact them. As a result of our extensive experience in the industry, in many cases, we have a direct reporting process for immediate takedown. During the takedown process, we also provide a range of mitigating features to minimise the impact of a phishing campaign, including browser blocklist submission.

Learn more about our site takedown capabilities and how their efficiencies are of benefit to your company.

Contact Us