Major Email Providers Add Brand-Verification Technology to Help Thwart Phishing
Google and other large providers are adopting BIMI, a technology for authenticated branding that could help drive security to reduce phishing attacks that use the logos of popular firms.
Robert Lemos
PDF
Phishing attacks that pose as major brands have increasingly caused headaches for users and raised questions over who should foot the bill for securing e-mail.
The eventual victim—consumers and business users—typically have few security options aside from turning up the knob on their message-security software in hopes of blocking most attacks. Meanwhile, the major brands—think banks, healthcare, and government agencies—had little incentive to spend money on fighting the use of their logos and brands or for implementing technical security measures, such as Sender Policy Framework (SPF) and Domain-based Message Authentication, Reporting, and Conformance (DMARC).