DMARC is an anti-email-spoofing tool that mail-server administrators can enable; it's designed to reject emails with forged return addresses.
Valimail, an email security company (and thus not a neutral party on this matter) probed the mailserver configurations of the three largest electoral districts in each state, and reports that 10 out of 187 of the servers they analyze have a properly configured DMARC system. The rest either do not have DMARC (66%) or had misconfigured it (28%). The researchers note that three key swing states (AZ, FL, NC) have no spoofing protection for the mailservers for their three largest districts.
The worry is that attackers could use the lack of DMARC to impersonate legitimate email addresses to send targeted phishing or malware in order to gain a foothold on election networks or launch attacks, steal data or delete it altogether, a move that would potentially disrupt the democratic process.
"It does not require a stretch to imagine attackers impersonating election officials via spoofed domains in order to spread disinformation, conduct voter misdirection or voter-suppression campaigns, or even to inject malware into government networks," said Valimail's Seth Blank, who authored the research.
Most of the largest US voting districts are vulnerable to email spoofing [Zack Whittaker]
"The tactic, which experts in mobile-phone security said was concealed through an unusual added layer of encryption, appears to have violated Google policies"
Hackers working for China's government targeted firms working on coronavirus vaccines, and stole hundreds of millions of dollars worth of intellectual property and trade secrets, claims the Justice Department in a statement Tuesday announcing criminal charges.
This is quite a major hack. Now is a good time to change your Twitter password, if you are a user. Hackers pumping a cryptocurrency giveaway scam appear to have compromised the Twitter accounts of leading exchanges, prominent individuals, major corporations, and at least one news organization.
One million Americans use American Sign Language as their primary means of communication. But as you'd expect, even though ASL is the sixth-most used language in the US, it isn't just any old language like English or Spanish or French. According to Communication Service for the Deaf, 98 percent of Deaf people don't receive education […]
After a successful round of funding on Kickstarter, Fluster: The Social Card Game is now ready to help turn a party or game night into the engaging, surprising, and enlightening social affair you always hoped it would be. A deck of 100 cards, Fluster is chock full of unusual, funny, and thought-provoking questions inspired to […]
Physics may have been that class you sleepwalked your way through in high school. But while it might have just slipped under your radar throughout your academic career, you probably shouldn't have given it such shallow attention. Sure, we could focus on the immediate pluses of a career as a physicist, like the more than […]