Both SPF and DKIM were updated with the IETF standard 7372 in 2014. ... not because of lack of knowledge but because they aren’t widely used and their syntax can be maddening to get exactly right.

DKIM works by preventing the spoofing of the “Display From” email address (from RFC 5322, Internet Message Form email standard) domain.

Email gateways, artificial intelligence, machine learning, SPF, DKIM and DMARC are all good tools to have on hand, but they don't provide adequate security without human guidance.

The fake portal is easy to explain in the scam but the clever part is delivering a message that appears to have passed Google’s DKIM verification in what is called a DKIM replay phishing attack.

In July 2018, US-CERT raised an alert regarding the Emotet banking trojan, which is also being used to distribute a secondary malware known as “Trickbot”. This alert provided recommendations ...