Brightball

Phishing Leaves a DMARC Trail

apwg | Email | DMARC | Phishing | dmarcian | - August 7, 2018 // Barry @ A.P.W.G.

In May I had the opportunity to present at the Anti-Phishing Working Group (APWG) Conference after spending some time cross referencing the APWG's eCrime Exchange data with dmarcian's historic DMARC reports to see if we could identify consistent patterns among known bad actors, as well as potentially identifying a wider scope to the attacks that any single entity could see. The results were interesting!

// Share.on([hacker news, linkedin, twitter, facebook, reddit])

Full article at the dmarcian blog.

ANNOUNCEMENT: At BSides on October 28th, 2023 I announced the upcoming 2024 private beta of dmarcSTAR, a service that approaches DMARC in what I believe is the ideal manner after over a decade of experience with the specification. Read more at dmarcSTAR.com.

// Share.on([hacker news, linkedin, twitter, facebook, reddit])

Fractional CTO

My name is Barry Jones (SAFe SPC, Gitlab PSE) and Brightball is my consulting company. I help companies solve problems across the technical spectrum, from performance optimization to security and organization management.

Contact me on LinkedIn to discuss a consultation for your organization, or on Sessionize for conference presentations.

Related Articles

How Microsoft Became Phishing's Biggest Enabler
Security | Email | DMARC | - February 23, 2023
The Time I Accidentally Ended Up Combatting Fraud for a Year
Email | DMARC | Rails | Security | - February 10, 2023
Deploying DMARC Without Breaking Everything
Email | Security | DMARC | - July 23, 2022
Combating Phishing with DMARC
DMARC | Email | Security | - July 18, 2022
Automatically Reversing Account Takeovers
DMARC | Email | Security | - July 11, 2022

Most Popular

Reality Driven Development
Business | Pairing | - May 21, 2018
Comparing Elixir and Go
Elixir | Golang | - January 26, 2017 // Codeship
The Time I Accidentally Ended Up Combatting Fraud for a Year
DMARC | Rails | Security | Email | - February 10, 2023
Why should you learn PostgreSQL?
PostgreSQL | - July 21, 2014
Insanity with Elixir + Phoenix + PostgreSQL
Elixir | Phoenix | PostgreSQL | - July 6, 2016
Docker is the Heroku Killer
Docker | Heroku | - May 14, 2014
Automatically Reversing Account Takeovers
Security | DMARC | Email | - July 11, 2022
Thank You TailwindCSS
Phoenix | TailwindCSS | Design | - August 17, 2020
No such thing as "real programming"
Business | PHP | Life | - July 20, 2015 // freeCodeCamp
PostgreSQL functions with Elixir Ecto
PostgreSQL | Elixir | Phoenix | - July 27, 2016

Recent Presentations

Security Automation with Gitlab
Security | DevOps | - January 27, 2024 // DEF CON 864
Ansible + Terraform, the PBJ of DevOps
DevOps | - October 12, 2021 // UCLUG
Video: Developing a Layered Email Security Strategy Webinar
DMARC | Email | Security | - September 23, 2020 // dmarcian
What to Expect When You're Emailing
DMARC | Email | - July 20, 2019 // Carolina Code Conf
Repeating History with Elixir...again
Phoenix | Elixir | - July 28, 2018 // Carolina Code Conf
Repeating History...on Purpose...with Elixir
Elixir | Phoenix | - November 29, 2016 // Upstate Elixir
Go from a PHP Perspective
Golang | PHP | Ruby | - April 16, 2015 // Upstate PHP
Protecting Users from Phishing and Fraud
Email | DMARC | DNS | Security | - April 2, 2015 // Upstate PHP
Video: SQL vs NoSQL Discussion at UpstatePHP
NoSQL | PostgreSQL | - September 13, 2014 // Upstate PHP
Exploring Ruby on Rails and PostgreSQL
Ruby | Rails | PostgreSQL | - July 4, 2014 // The Ironyard