The State of PCI DSS v.4.0.1 Compliance and Email Security in 2025

Phishing attacks are rising, yet many payment-processing businesses remain unprotected. Despite new PCI DSS v4.0.1 requirements, a significant gap exists in DMARC adoption, leaving organizations vulnerable to email-based threats.

Inside this report, you’ll find:

• The growing threat of phishing attacks against payment-processing businesses
• Why 72% of companies claim PCI DSS readiness, but only 38% have DMARC in place
• The biggest challenges organizations face in implementing email security controls
• Expert guidance from DMARC engineers on achieving PCI DSS v4.0.1 compliance and strengthening email security

Gain clarity on how to secure your email communications and meet PCI DSS v4.0.1 requirements.