ASX100 firms vulnerable to email security risks
Around 86% of ASX100 companies aren’t implementing recommended email security best practices, leaving them vulnerable to malicious emails, according to research by cybersecurity firm Proofpoint.
This is despite 90% of cyber attacks coming through email and global imposter email attempts growing more than 400% year on year, Proofpoint Australia and New Zealand Country Manager Crispin Kerr said in a blog post.
Further, 42% of ASX100 organisations have not published a Domain-based Message Authentication, Reporting and Conformance (DMARC) record, “making them susceptible to cybercriminals spoofing their identity and increasing the risk of email fraud targeting users”, Kerr said.
DMARC uses DomainKeys Identified Mail (DKIM) and Sender Policy Framework (SPF) to authenticate a sender’s identity before allowing a message to reach its intended destination, thus helping to prevent domain name misuse, Kerr explained.
To help improve companies’ email security, Kerr suggested organisations implement defences and “inbound threat blocking capabilities” — such as DMARC email authentication protocols — and cybersecurity awareness programs that “train users to spot and report malicious emails”.
Information Technology Professionals Association (ITPA) is a not-for-profit organisation focused on continual professional development for its 18,700 members. To learn more about becoming an ITPA member, and the range of training opportunities, mentoring programs, events and online forums available, go to www.itpa.org.au.
The Australian Government has released a code of practice for IoT devices like smart televisions...
UiPath has revealed that the COVID-19 pandemic has increased demand for robotic process...
Adobe has issued the final patches for version 1 of the popular e-commerce platform Magento, but...