Microsoft to rollout DMARC reject policy across consumer and enterprise services
Microsoft has recently shared from April 2023; they will be rolling out improvements to the way that their DMARC policy is currently handling email within both consumer and enterprise services. Upgrading their policy from “quarantine” to “reject”.
What does this mean for organisations?
Currently when email is sent to Microsoft email accounts, if the email fails DMARC the policy is to quarantine the email message. E.g. place the failed email into your junk folder.
Once this rollout is complete, the DMARC policy across Microsoft’s consumer and enterprise services will have been updated from quarantine to reject. Therefore, should an email fail Microsoft’s DMARC authentication, then the email will be rejected and won’t land in the receiver’s inbox at all, with the sender notified that the email was not delivered.
By implementing this DMARC reject policy, Microsoft aims to help protect its users from spam, phishing, and other email-based fraud by ensuring that only legitimate email messages are delivered to their inboxes.
This means that any organisation that does not have their DMARC record configured correctly for all its email domains and senders, their email will no longer be received by businesses or consumers.
What is DMARC?
DMARC (Domain-based Message Authentication, Reporting and Conformance) is a protocol used for authenticating email domains. DMARC has been created to give domain owners the ability to protect their domains from unauthorised use or abuse. DMARC is used to help combat email phishing and other types of email fraud.
Additionally, enabling a DMARC record can help to improve domain owners’ sender reputation and email deliverability.
To find out more about how DMARC works, check out our page here.
We're here to help
InfoTrust offers DMARC implementation services to assist in the planning and execution of the project activities in the process of enabling DMARC records to reject. Our team of engineers all have in-depth knowledge and an excellent track record of supporting small and large organisations in Australia. If you need assistance in moving your domains to DMARC reject, contact us today.
see our
Related resources
As InfoTrust approaches its 7th anniversary, we are excited to announce significant changes as we grow our foothold in the cybersecurity market and look ahead to future expansion. Co-founders Dane Meah and Simon McKay will be stepping into Board positions while welcoming a new CEO, Keith Buckley to run the day-to-day operations and fuel the next stage of growth.
Buckley brings with him several decades of experience in the technology sector for companies including Dell, Symantec, McAfee, Riverbed and most recently Citrix, with a strong track record of taking established businesses to the next level.
Faced with a range of challenges from emerging cybersecurity threats to the COVID-19 Pandemic, Not-For-Profit Organisations in particular, are being tested on how they deal with the evolving threat landscape. The Salvation Army’s recent implementation of InfoTrust’s Incident Response Retainer Services prompted Justin Flower, InfoTrust’s Southern Region – General Manager to interview<
Salvation Army has augmented its cybersecurity capabilities by investing in InfoTrust’s Incident Response Retainer Services. This service supports the Salvation Army security team in responding to cyber incidents, reducing the potential risk of damage and breaches. InfoTrust’s consultants assist in finding the root cause of a security incident, provide containment and subsequent remediation advice.
Following on from Australian Prime Minister, Scott Morrison’s announcement the morning of Friday 19th June. InfoTrust has provided advice to media outlets and the general public on what they, and Australian businesses, can be doing to protect themselves against cyber attacks. Although this is not new information to many organisations, who generally have a good understanding of the cyber threats they face. The key message from the announcement was that the increased frequency, and sophistication of these attacks from a state-sponsored actor against the Australian government and businesses is of concern. The advice from the Government is to ensure you remain vigilant and cautious of any digital communication and interaction online.
I’m excited to announce that InfoTrust has been awarded Netskope’s Emerging Partner of the year 2019.
Each year Netskope awards this to partners that deliver not only consistent customer growth but also leverage the breadth of Netskope’s solution to create ground-breaking services.
“InfoTrust has demonstrated significant customer success, solution innovation, speed to market and deployment, and innovative go-to-market strategies. The fluid nature of cloud services and user flexibility in accessing and working with customer data has resulted in massive security challenges for the enterprise. This requires new approaches and best practices — two things core to InfoTrust’s success” – Reno Maglitto, A/NZ Director of Channel & Alliances at Netskope.
We’re excited to announce that last month InfoTrust achieved CREST certified status.
The Council of Registered Ethical Security Testers (CREST) is a non-profit organisation, which assesses and certifies that an individual or business is providing security assurance services of exemplary quality, with deep understanding and knowledge of the latest vulnerabilities and techniques used by real attackers.
Although we have employed CREST certified individuals for some time now, this is an exciting step for InfoTrust as it is an additional certification achieved by utilising best-practice methodologies and the highest standards of test hygiene and conduct.
We're Here To Help