The Red Sift Blog

Navigating the “SubdoMailing” attack: How Red Sift proactively identified and remediated a new risk to our customer base
In the world of cybersecurity, a new threat has emerged. Known as “SubdoMailing,” this new attack cunningly bypasses some of the safeguards that DMARC sets up to protect email integrity.  In this blog we will focus on how the strategic investments we have made at Red Sift allowed us to discover and protect against this...Continue Reading: Navigating the “SubdoMailing” attack: How Red Sift proactively identified and remediated a new risk to our customer base

All blogs

Email

Navigating the “SubdoMailing” attack: How Red Sift proactively identified and remediated a…

Rebecca Warren

In the world of cybersecurity, a new threat has emerged. Known as “SubdoMailing,” this new attack cunningly bypasses some of the safeguards that DMARC sets up to protect email integrity.  In this blog we will focus on how the strategic investments we have made at Red Sift allowed us to discover and protect against…

Read more
Email

Where are we now? One month of Google and Yahoo’s new requirements…

Rebecca Warren

As of March 1, 2024, we are one month into Google and Yahoo’s new requirements for bulk senders. Before these requirements went live, we used Red Sift’s BIMI Radar to understand global readiness, and the picture wasn’t pretty.  At the end of January 2024, one-third of global enterprises were bound to fail the new…

Read more
Cybersecurity

Your guide to the SubdoMailing campaign

Billy McDiarmid

A significant number of well-known organizations have been attacked as part of what’s being called the SubdoMailing (Subdo) campaign that has been going on since at least 2022, research by Guardio Labs has revealed.   The scale of execution of this attack is staggering, and the impact is hugely damaging, but the goal is simple…

Read more
Certificates

A confident deployment guide for TLS and PKI

Ivan Ristic

Our journey to better network transport security has been quite the ride, filled with ups and downs. Back in the ’90s, when SSL and the Netscape browser were just taking off, things were pretty hard. We were dealing with weak encryption, export restrictions on cryptography, and computers that couldn’t keep up. But over the…

Read more
DMARC

Red Sift OnDMARC: The best Agari alternative for DMARC

Francesca Runger-Field

Looking for an alternative to Agari DMARC Protection that helps you safely and efficiently stop unauthorized use of your email-sending domains? You’re in the right place.  Here is your definitive comparison guide for Agari and Red Sift OnDMARC – one of the most popular Agari alternatives on the market.  Red Sift OnDMARC overview Red…

Read more
DMARC

Red Sift OnDMARC: The best Valimail alternative for DMARC

Francesca Runger-Field

Looking for an alternative to Valimail that helps you safely and efficiently stop unauthorized use of your email-sending domains? You’re in the right place.  Here is your definitive comparison guide for Valimail and Red Sift OnDMARC – one of the most popular Valimai alternatives on the market.  Red Sift OnDMARC overview Red Sift OnDMARC…

Read more
News

Announcing the beta for Red Sift Radar: An LLM Assistant for Security…

Rahul Powar

We are delighted to announce the beta for Red Sift Radar – our new LLM assistant for security teams. With Red Sift Radar, teams will be able to use an LLM to automate manual checks, drive security consistency, and build bridges with less technical teams. To bring this to life, we have taken base…

Read more
Cybersecurity

Navigating Corporate Risk and Cybersecurity: A Discussion with Annie Searle

Sean Costigan

By Sean Costigan, PhD In a recent exploration of the intricate world of corporate risk management and cybersecurity, I enjoyed the privilege of engaging in a compelling conversation with Annie Searle, a distinguished expert in the field of operational risk management. Searle’s extensive experience in the financial, IT, and emergency services sectors illuminates the…

Read more
Cybersecurity

Resilience Rising | Episode 1 with Annie Searle

Red Sift

In this episode of Resilience Rising listeners are invited to explore the complex world of cybersecurity and corporate risk with special guest Annie Searle. Annie will use her experience in operational risk management across the financial, IT and emergency services sectors to help risk and security leaders unpack their strategic challenges. The discussion delves…

Read more
Email

February 1, 2024: A new era of email authentication begins

Francesca Runger-Field

From today, Google and Yahoo are rolling out new requirements for bulk senders, ushering in a new era of email compliance. If you’re just learning about this now, here’s a quick summary: Google and Yahoo now require bulk senders – those who send more than or around 5,000 emails daily – to meet a…

Read more
Email

How marketers can work with security to meet Google and Yahoo’s requirements

Rebecca Warren

I am lucky enough to have been a marketer at multiple cybersecurity companies. From these roles, I have learned from some of the best in the business how to effectively partner with your security team on any initiative.  Given that Google and Yahoo’s bulk sender requirements are imminent,  it seemed like the perfect opportunity…

Read more
Email

What marketers should know about Google and Yahoo’s requirements for bulk senders

Francesca Runger-Field

From February 1, 2024, the world of email marketing is set to shift as Google and Yahoo’s requirements for bulk senders (businesses that send 5,000+ emails a day) come into effect.  If you’re a marketer aiming to ensure consistent delivery to personal Google and Yahoo inboxes, it’s important you understand the upcoming changes and…

Read more
Email

Why successful email marketing relies on domain authentication

Francesca Runger-Field

How to master the essentials of email security for optimal campaign reach and inbox placement Crafting the perfect email marketing campaign is hard work. And, nothing is more frustrating than a perfectly crafted campaign not performing because the emails were delivered to the the spam folder.  In 2023, Validity found that one in every…

Read more
DMARC

2024: The year of DMARC as a business imperative

Rahul Powar

I can say with confidence that the world does not need more security predictions for 2024. But as we head into the new year, it is important to have conversations about security strategy to inform our business priorities and our road maps.  As I talk to our Red Sift customers, our partners, and the…

Read more
DMARC

Global mandates and guidance for DMARC 2024

Rebecca Warren

For cybersecurity, email security and IT teams, understanding and adhering to global DMARC (Domain-based Message Authentication, Reporting, and Conformance) requirements is imperative.  At Red Sift, we have put together a tabulated overview of DMARC mandates and guidance enforced across different regions worldwide. Our aim is to provide a clear, unambiguous guide that consolidates the…

Read more
Email

Are you ready for Google & Yahoo’s bulk sending requirements?

Rebecca Warren

Confused if your organization is ready for Google and Yahoo’s new requirements for bulk senders?  I know the feeling. When the announcement came out in October, I was trying to figure out what they *actually* meant for people sending more than 5,000 emails a day.  Luckily the team at Red Sift has helped prepare…

Read more
Certificates

Certificate Monitoring versus Certificate Lifecycle Management

Billy McDiarmid

TLS certificates – once called SSL certificates and often referred to as just “certificates” – are one of the core ways we keep the internet safe and secure. Certificates encrypt data to make sure it is transmitted privately between your browser, the website you’re visiting, and the website server.  But as the number of…

Read more
Email

The world is not ready for Google & Yahoo’s bulk sending requirements:…

Rahul Powar

In October 2023, Google and Yahoo jointly announced new requirements to help deliver “a safer, less spammy inbox” for users.  The requirements will go into place on February 1, 2024 and are specific to bulk senders – those that send over 5,000 emails daily.  What are the new Google and Yahoo requirements for bulk…

Read more
Email

A 2024 guide to mastering Google and Yahoo’s bulk email sender requirements

Francesca Runger-Field

In response to the ever-evolving challenges posed by spam, phishing, and email-based fraud, email service giants Google and Yahoo are set to implement significant changes for bulk senders (businesses that send 5,000+ emails a day) from February 1, 2024. The changes center around bolstering email authentication protocols, ensuring low spam rates, and making it…

Read more
Email

The best tools to see if you meet Google and Yahoo’s new…

Rebecca Warren

In October 2023 Google and Yahoo jointly announced new requirements for “bulk senders” – which are classified as those who send more than (or around) 5,000 messages per day to Gmail or Yahoo accounts.  These requirements will go into effect February 1, 2024 and feature many new mandates which can broadly be grouped into…

Read more