Global, November 19th, 2024 – New research from EasyDMARC, a leading cloud-native email authentication platform, reveals concerning vulnerabilities in UAE’s top-level .ae domains. An analysis of 37,926 domains has shown that only 1.11% have adopted the Domain-based Message Authentication, Reporting, and Conformance (DMARC) standard, an essential tool for safeguarding against phishing and spoofing attacks.
The research found that just 420 domains out of the total surveyed have implemented the DMARC protocol, first published in 2012.
Among the 420 UAE domains that have implemented DMARC, only 30.48% have set their protocols to reject non-compliant email traffic, ensuring maximum protection against phishing and spoofing. A significant portion, 40.24%, have configured their DMARC policies to only monitor incoming traffic without taking direct action, leaving them exposed to potential threats. Meanwhile, 29.29% of these domains opted to quarantine suspicious emails, a step that provides partial security by diverting such emails from recipients’ inboxes to the junk folder without outright blocking them.
Compared to other regions, DMARC adoption in the UAE remains relatively low. Previous EasyDMARC research highlighted that in India, 46% of domains have implemented DMARC protocols, reflecting significant progress in email security. Germany also has a higher adoption rate of 4.55%, indicating broader implementation compared to the UAE’s current rate.
These findings underline a significant gap in email security practices within UAE domains. The majority of .ae domains remain vulnerable, with only a small fraction taking full advantage of DMARC’s protective features to prevent phishing and spoofing attempts. This exposes many businesses, institutions, and organizations to potential data breaches, business email compromise, and other cyber threats.
Gerasim Hovhannisyan, CEO and co-founder of EasyDMARC commented on the findings, saying,
“The findings in our research is alarming, given the increasing frequency of cyberattacks in the UAE. But it is also not uncommon to see such low adoption of a well-established security standard like DMARC. This research highlights a critical need for improved security measures across the board particularly as the UAE and the broader region have become prime targets for phishing campaigns and other sophisticated attacks.
Email continues to be the backbone of business communication, yet the growing influence of AI is increasing the potential for sophisticated phishing and spoofing attacks. Robust domain authentication is more important than ever. Without it, UAE organizations risk exposure to cyber events that could lead to substantial financial and reputational damage. Proactive measures are essential to fortify the nation’s businesses and digital infrastructure.”
| Total checked ‘.ae’ domains | 37,926 | |
| Has dmarc | 420 | 1.11% |
| Policy equals to none | 169 | 40.24% |
| P equals to quarantine | 123 | 29.29% |
| P equals to reject | 128 | 30.48% |
About EasyDMARC
EasyDMARC is a cloud-native B2B SaaS to solve email security and deliverability problems in just a few clicks. With advanced tools, such as its AI-powered DMARC Report Analyser, DMARC, SPF, DKIM cloud management solutions, and email source reputation monitoring, EasyDMARC’s platform helps customers stay safe and maintain the “health” of their domains without risk.
With offices in the US, Netherlands, and Armenia, the company delivers the most comprehensive platform for anyone who strives to build the best possible defense for their email ecosystem. EasyDMARC ultimately provides peace of mind, enabling clients to focus on achieving their business objectives rather than dealing with the worries and concerns associated with cybersecurity.
We’re glad you joined EasyDMARC newsletter! Get ready for valuable email security knowledge every week.
You’re already subscribed to EasyDMARC newsletter. Continue learning more about email security with us