Every Microsoft 365 tenant includes a default domain in the format tenantname.onmicrosoft.com. This is known as the Microsoft Online Email Routing Address (MOERA). What many don’t realize is that attackers have started using these domains to impersonate organizations in phishing attacks. If left unmonitored, MOERA domains can become a blind spot in your email…
Read more
Executive Summary: The NCSC is updating its Mail Check services, discontinuing features like DMARC aggregate reporting to enhance accessibility and manage costs. Public sector organisations relying on these services should explore alternative DMARC reporting solutions to maintain email security. This article: Introduction The National Cyber Security Centre (NCSC) is modifying Mail Check services to discontinue…
Read more
Executive Summary: Integrating cybersecurity measures from the outset of software development is essential. Experts agree that this proactive approach enhances organizational resilience against cyber threats. This article: Introduction The traditional approach to cybersecurity—often tacked on as an afterthought—needs a serious overhaul. This was the consensus in the recent MN-ISSA sponsored fireside chat titled “Moving Cybersecurity…
Read more
Executive Summary: The NCSC’s upcoming changes to Mail Check services, including the discontinuation of DMARC aggregate reporting, necessitate that organisations find alternative solutions to maintain robust email security. This article: Introduction The National Cyber Security Centre (NCSC) recently proposed updates to its Mail Check coming into effect on 24 March 2025. As the service evolves…
Read more
Executive Summary: With the DORA compliance deadline approaching, it’s crucial for affected sectors to understand and prepare for the new operational resilience requirements to ensure adherence to regulatory standards. This article: Introduction The European Union’s (EU) Digital Operational Resilience Act (DORA) deadline approaches, with just one week to go before the DORA applies to all…
Read more
Executive Summary: Elevating cybersecurity to a top business priority requires unified efforts across all organizational levels. Aligning strategies to address critical risks ensures a more resilient enterprise, as highlighted in Red Sift’s recent webinar. This article: Introduction Everyone has a role to play in protecting the enterprise. Whether you’re shaping strategy or implementing solutions, aligning…
Read more