Ecommerce Websites Commonly Miss Safeguarding Customers Against Phishing Attacks

An e-mail analytics firm called 250ok recently conducted a study that shows ninety percent of the key websites that online retailers operate within USA and the European Union cause their customers to become endangered with phishing attacks.

It's most likely for consumers to encounter spoofing and phishing assaults when organizations do not properly maintain one published DMARC (Domain-based Message Authentication, Reporting and Conformance) or SPF (Sender Policy Framework) rule. SPF refers to certain e-mail authentication arrangement which identifies spoofing attempts, alternatively some intermediate entity which falsely claims to be a specific sender utilizing fake e-mail id. DMARC works out as an industry standard of validating e-mail towards the prevention of phishing/spoofing assaults. Dailymail.co.uk posted this, January 30, 2018.

Commonly, retailers enforce certain extent of e-mail validation when the messages come on their websites. In this respect, according to the study, many retailers do not consistently uphold their approach on one and every website they regulate. Merely 11.3 percent of the most popular American retailers' domains and 12.2 percent of the most popular EU retailer websites conform to 250ok's suggested least rules for electronic mail system.

The Anti-Phishing Working Group in a research of 2017 reports that on average phishing attacks targeted 443 brands in one month during January-June 2017 compared to 413 every month during January-June 2016. As per 250ok's study, such assaults threaten consumers' faith in brands, as 91% of total online assaults start with phishing electronic mail.

According to privacy director Matthew Vernhout at 250ok, when retailers fail to enforce the DMARC and SPF type of fundamental authentication policies for their websites, they become blind to possible exploitation of their company sites. And that leaves consumers and brands alike unnecessarily vulnerable to spoofing assaults which harm brand trust.

Moreover according to Shehzad Mirza, Director of Operations at GCA (Global Cyber Alliance), repeatedly phishing has been observed as a very common cyber danger. He says DMARC safeguards both enterprises and customers against certain extremely bad kinds of phishing. Consequently, governments of USA and UK have made it compulsory to enforce DMARC on government websites. GCA advises all enterprises and governments everywhere towards following similar course.

» SPAMfighter News - 2/8/2018