DMARC Adoption among Australia’s Top 100 Companies

Now that we’re up and running in Australia, our customers have their data stored in-country to comply with data sovereignty regulations. In this installment of our DMARC adoption research, we’re taking a look at how DMARC is faring there.

We inspected the records of Australia’s top 100 companies ranked by overall revenue and found some of the best results so far in our research.

• 41% had a DMARC record with a p=none policy
• 25% had a DMARC record with a p=reject policy
• 20% had no DMARC record
• 13% had a DMARC record with a p=quarantine policy

Overall, 80% of these companies had a DMARC record, though 41% of the whole were at a p=none DMARC policy—the monitoring policy where most domains start their voyage to p=reject.

A quarter of the top 100 Australian companies were at a p=reject policy and dutifully protect their customers, employees, vendors and brand integrity from the potential damage and losses from domain spoofing. Thirteen percent of the top 100 companies had an enforcement policy of p=quarantine, which sends DMARC-failing email to the spam folder.

The Australian Cyber Security Centre has long been a DMARC advocate and has developed DMARC guidance to help organizations protect their domains from being used by criminals to send fraudulent emails.

Want to continue the conversation? Head over to the dmarcian Forum

If you need assistance with DMARC monitoring, deployment, or compliance, register for a complimentary trial with us, and we’ll help you along the way.