High profile brands are widely spoofed by attackers phishing and spreading malware. This reduces trust in these brands and allows phishing and malware campaigns to be more effective.
Email spoofing is much harder if domain owners adopt Domain-based Message Authentication, Reporting and Conformance (DMARC). DMARC helps email domain owners to control how their email is processed. Organisations that deploy DMARC properly, can ensure that their addresses are not successfully used by criminals as part of their campaigns.
It's safe and easy to get started by setting a monitor-only policy which lets you understand how email is being sent from your domain without affecting deliverability. With this understanding you can then move on to a policy which blocks spoofed emails and leaves legitimate email unaffected.
The NCSC is committed to helping the public-sector lead in deploying DMARC, and are prioritising 5,322 government domains for adoption in the first instance (Central Government).
Mail Check is the NCSC’s platform for assessing email security compliance, and it collects, processes and analyses DMARC reports from across the public sector. The tool is currently in the early stages and is constantly being improved. We're working on features to allow individual domain owners to perform their own analysis of the failures related to their domains, and for the NCSC to help analyse all data for the public sector.
Our plan is to rollout to all Central Government departments to help them set their domain policies so that spoofed emails are rejected by receivers, and the Mail Check platform is critical to providing the data to help that happen.
If you have a public-sector email address you can sign up for an NCSC account and access the tool. If you don’t have an email address accepted by the tool but believe you should have access, get in touch with us at email@example.com