Most UK university applicants at risk of email fraud

Does your organisation have the ‘holy trinity’ of DMARC, DKIM, and SPF in place for email? They’re not difficult to set up, so no excuses…:

Only one of the top 20 UK universities are following best practices to block fraudulent emails from reaching targets by implementing a basic modern authentication protocol to protect against phishing, putting students, staff and applicants at risk, according to a study by email security firm Proofpoint.

Nearly two-thirds (65%) of  the UK’s top universities not have a published domain-based message authentication, reporting and conformance (Dmarc) record, the study found, making them potentially more susceptible to cyber criminals spoofing their domains and increasing the risk of email fraud for prospective students.


Original article here