Tuesday, October 17, 2017 10:18:35 AM
THANKS!!!!!!!!!!!!!
Homeland Security tells federal agencies to secure email now!
They've got 90 days to roll out an email validation system that should help protect against spoofed emails and phishing attacks.
by
Alfred Ng
October 16, 2017 4:03 PM PDT
Microsoft's Outlook uses DMARC, an email authentication method that prevents spoofing. Now the federal government will, too.
Josh Miller/CNET
How do you know if that email from the IRS is really from the federal agency? It's not always easy to tell if something you get from a .gov address is the real deal or a scam.
But the Department of Homeland Security on Monday announced a move that should help put an end to impostor emails. All federal agencies have been given 90 days to implement DMARC, a basic email security feature that prevents spoofing.
"You got a lot of people trying to trick people into thinking they're from the IRS, or vice versa, trying to get into US government systems via phishing attacks," Jeanette Manfra, an assistant secretary in the agency's office of cybersecurity and communication, said Monday while announcing the order at the Manhattan District Attorney's office.
DMARC, which stands for "Domain-based Message Authentication, Reporting and Conformance," is used by the majority of consumer email systems, like Gmail, Outlook and Yahoo. But DMARC has a harder time finding its way to government email addresses, where people could pretend to be from a senator's office or a government agency as part of a scam.
In July, Sen. Ron Wyden, a Democrat from Oregon, penned a letter (PDF) to Manfra requesting that federal agencies be required to implement DMARC. That was after hackers reportedly used spoofed emails in May pretending they were part of the Pentagon. And the IRS reported a four-fold jump in spoofing attacks in 2016 from 2015.
Under the new requirements, DMARC would be able to stop these impersonation attacks, Manfra said.
The DHS is also requiring all federal agencies to update their websites to use HTTPS, a secured version of web pages that prevents snoops from seeing your traffic online. About half of the websites online use HTTPS, but about a quarter of all federal government sites still don't.
https://www.cnet.com/news/homeland-security-tells-federal-agencies-secure-email-now-dmarc-https/
Avant Technologies Engages Wired4Tech to Evaluate the Performance of Next Generation AI Server Technology • AVAI • May 23, 2024 8:00 AM
Branded Legacy, Inc. Unveils Collaboration with Celebrity Tattoo Artist Kat Tat for New Tattoo Aftercare Product • BLEG • May 22, 2024 8:30 AM
"Defo's Morning Briefing" Set to Debut for "GreenliteTV" • GRNL • May 21, 2024 2:28 PM
North Bay Resources Announces 50/50 JV at Fran Gold Project, British Columbia; Initiates NI 43-101 Resources Estimate and Bulk Sample • NBRI • May 21, 2024 9:07 AM
Greenlite Ventures Inks Deal to Acquire No Limit Technology • GRNL • May 17, 2024 3:00 PM
Music Licensing, Inc. (OTC: SONG) Subsidiary Pro Music Rights Secures Final Judgment of $114,081.30 USD, Demonstrating Strength of Licensing Agreements • SONGD • May 17, 2024 11:00 AM