Out of the 2008 roster of Fortune 500 companies, a mere 202 appear to be using any of the forgery countermeasures provided by SPF, DKIM or similar implementations. This poses a stark contrast to Sendmail’s Survey, which claim some 90 percent of Fortune 1000 companies, suggesting a sharp decline from Sendmail’s reported 282 companies. To confirm their results, Secure Computing’s Research Team decided against using a random sampling and instead pulled together a list of all 500 primary domains used by the Fortune 500 and queried them.
Overall, most of the well known Fortune 500s that touch the technology world were using forgery countermeasures of some sort, and that’s where the rubber meets the road. These are, by far, the most likely targets of phishing and spoofing attacks. However it is important for the rest of the companies to consider these measures in an ever-increasing arena for fraud. Configuring SPF can be done effortlessly, in as little as 20 minutes for most companies.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.