Skip to main content

Twitter: Attack emails drop from 110 million per day to a few thousand


Jasper_The_Rasper
Moderator
Forum|alt.badge.img+54
Adopting protocol called DMARC pays big dividends, says Twitter postmaster

There used to be a whopping 110 million attack messages per day spoofing the Twitter domain name as cyber-criminals blasted out fake Twitter e-mail at intended victims to try and fool them into opening dangerous malware-infested links and other scams. But by adopting a messaging authentication protocol called Domain-based Message Authentication, Reporting and Conformance (DMARC), Twitter has seen that number drop to a few thousand.

“Lo and behold, it works,” says Josh Aberant, Twitter’s postmaster in charge of messaging.

DMARC first started about two years ago as a cooperative effort among Google, Microsoft, Facebook, and eBay’s PayPal unit, among others, to combat the scourge of spoofed e-mail that will mimic the domain names of well-known companies.

DMARC works by checking that e-mail truly originated from where it was supposed to. Organizations that support DMARC can monitor for fake e-mail and quarantine or block it. Aberant said Twitter, working with partners Agari and Message Systems, decided to block the bad e-mail that the DMARC protocol identifies.
 
Full Article

0 replies

Be the first to reply!

Reply