Nearly 21 billion emails attributed to a large group of global consumer brands sent between October 2014 and March 2015 did not come from IP addresses of mail servers known to send on the brands’ behalf, according to Return Path.
The company analysed more than 235 billion messages appearing to come from these senders during the six-month period and suspicious, potentially fraudulent email made up 9pc of all messages. Because their origin could not be authenticated by the leading anti-phishing standard, DMARC, Return Path classified these messages as ‘suspicious’. While not always associated with cyber attacks, suspicious messages are considered more likely to place recipients at risk. Brands included in this study use the DMARC standard to identify and prevent delivery of suspicious messages attributed to them.
Suspicious message volumes during this six-month period peaked during the holiday season, in December, when more than six billion of the 47 billion messages analyzed (13pc) could not be authenticated. The proportion of suspicious mail attributed to these senders remained near 10pc throughout the first quarter of 2015, reaching 11pc in March.
Of the industry sectors represented by multiple companies in the group, financial services brands saw the highest proportions of suspicious messages: 11pc of email that appeared to come from these brands was deemed suspicious. Retailers and airlines saw less than half that rate, with roughly 4pc of messages appearing to come from them categorized as suspicious.
Robert Holmes, Return Path’s general manager of Email Fraud Protection, said: “As more brands employ email fraud protection technology to detect and stop phishing attacks from reaching consumers, they are discovering massive volumes of messages that seem to come from their sending domains, but which actually come from cyber criminals. Authentication-based solutions like DMARC represent the best available approach to identify and block suspicious email. Brands that properly authenticate email sent from their domains are directing mailbox providers to reject millions of potentially fraudulent messages every day, making email safer for all users.”
Return Path’s analysis, including monthly volume trends and industry breakouts, can be downloaded in full at: http://returnpath.com/resources/research/
