On Fri, Jun 19, 2020 at 12:41 AM Laura Atkins <la...@wordtothewise.com> wrote:
> On 19 Jun 2020, at 07:59, Murray S. Kucherawy <superu...@gmail.com> wrote: > > So to those of you with access to such (e.g., M3AAWG regulars among > us), is there evidence in the wild of spammers and phishers using > discardable (ahem) domains to achieve alignment and improve their > delivery success stories? > > > There is certainly ample evidence that spammers are: sing disposable > domains / rotating through domains and aligning authentication so that they > will pass DMARC. > Here's an article citing exactly such an example from today's headlines: https://threatpost.com/bofa-phish-gets-around-dmarc-other-email-protections/156688/ Sadly, the explanation of what DMARC is/does is botched. (related original article: https://www.armorblox.com/blog/blox-tales-7-bank-of-america-credential-phishing/ which details the specifics of the phishing attack - sent from Yahoo, misleading display name, misleading newly registered domain and URL) --Kurt
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
