Cloudflare’s new SPF, DKIM, and DMARC requirements
by DuoCircle
Starting July 3, 2025, Cloudflare requires all emails to be authenticated using at least one of the protocols. SPF or DKIM, to forward them. This requirement has been imposed in consideration of the growing number of email-based phishing and spoofing attacks. These email authentication protocols ensure that only authorized emails reach the inboxes of recipients, thereby preventing them from being manipulated into transferring money or sharing confidential information.
Email communication has become a vital part of our daily lives, especially for businesses. But did you know that a simple yet crucial security feature can help protect your emails from being tampered with or falsely represented? That’s where DKIM (DomainKeys Identified Mail) comes in. This method adds a digital signature to your email, giving both you and your recipients peace of mind that messages are authentic and safe.
How to avoid email authentication failures when sending messages to Microsoft 365 users?
by DuoCircle
If you are struggling with disappearing emails or deliverability drops when targeting Microsoft 365 users, then it’s an indication of an underlying issue— misconfigured or missing email authentication protocols.
Email has become a central tool for communication, but with its convenience comes the risk of impersonation and spam. Many people don’t realize that proper email setup is crucial to keep their messages safe and trusted. One of the best ways to protect your domain from being misused is through an SPF record. Think of it as a security badge that tells other mail servers which addresses are allowed to send emails on your behalf.
This week’s cyber world feels like a game of digital whack-a-mole, where every time defenders squash one threat, another pops up somewhere else. There are hackers sneaking malware into trusted tools, trojans hiding in mobile apps, and cybercriminals hijacking search results and online ads. From leaked security software fueling new attacks to crafty scams riding the wave of AI buzz, cybercriminals are proving they’ll exploit anything. Here’s how they’ve been keeping security teams on their toes!
How to pass Microsoft’s email authentication requirements?
by DuoCircle
If your company’s mailboxes are in Exchange Online, Microsoft requires you to take email protection seriously. You are liable for protecting the integrity of email messages from senders in your domain. Your recipients should be confident enough to open emails from your domain, knowing you have already taken the measures to ward off phishing and spoofing attempts.
DMARC is now mandatory in New Zealand: Here’s what the NZ government expects
by DuoCircle
Most countries have already made DMARC enforcement mandatory, especially for government agencies (after all, that’s where the real threats lie). But New Zealand wasn’t on this list until now!
This week’s cybersecurity round-up brings you stories you need to know, from fake crypto wallets lurking in Firefox to major breaches hitting airlines, global courts, and healthcare groups. We’ll see how threat actors are shifting from traditional tactics and which new threats are on the radar.
Stay digitally safe and well-informed about your personal information security!
As we move further into the digital age, there is a growing appetite for brands to build a relationship with their audience by reaching them with personalized communication. Email marketing is a powerful weapon, but most people have never been able to figure out how to conduct email campaigns manually or with high-end tools. Once organizations understand why email marketing software works better than manual efforts, they can redirect their efforts into more effective ways.
When it comes to B2B and B2C business communications, email plays a crucial role as a core communication channel. From running marketing campaigns to offering customer support, from notifying customers with transactional details to engaging them one-on-one with newsletters and emails, they do it all for your business.
But what if these emails do not reach your audience at all? Poor email deliverability can not only affect your day-to-day business operations but also tarnish your brand reputation. This is exactly why you need DMARC to enhance your email deliverability.
Let’s find out how your email deliverability is dependent on DMARC.
SonicWall Malware Warning, Crypto Phishing Scheme, Medical Data Exposed – Cybersecurity News [June 23, 2025]
by DuoCircle
If you’re online, you’re a target, and this week proves it once again. Attackers have cloned a popular VPN app, used crypto support tools for phishing, and exposed data from hospitals, city councils, and even an international sports event. Here’s a deeper look into cybersecurity’s latest threats and how to stay protected!
3 emerging AI-powered cyber threats and how to stay protected from them in 2025
by DuoCircle
AI has penetrated deep into our lives, both maliciously and benevolently. The situation has worsened to a point where now one in 10 adults worldwide has fallen victim to an AI-voice cloning scam, and 77% of them have lost money.
Cold emailing is a strategic and effective way for businesses and service providers to reach potential clients, pitch their best offers, and generate high-quality leads. However, with so much noise surrounding AI chatbots, funnel automation, and generative AI, cold emailing no longer works the way it did five years ago. Two major factors that determine the fate of your cold emails are trust and deliverability. Without these two, cold emailing in 2025 may feel like a lost cause.
Avoiding common BIMI pitfalls: What goes wrong and how to fix it
by DuoCircle
BIMI (Brand Indicators for Message Identification) does one simple task— showing your brand logo next to your emails in the recipients’ inboxes. But getting there? Not so much.
You might think it’s easy to get your logo to be displayed next to your emails, but unfortunately, it’s nothing like setting a profile picture. (more…)
Cyberattacks and data breaches continue to hit hard this week! A scam targeting U.S. residents through fake DMV messages is harvesting sensitive data. At the same time, separate breaches have exposed insurance documents at Scania, journalist accounts at The Washington Post, and over a million records from Cock.li’s email service is included. WestJet Airlines is also facing internal disruptions due to a cyberattack. Here’s a quick breakdown of the most important incidents and how to stay safe.
The common ‘DMARC policy not enabled’ error pops up during a reverse DNS lookup, indicating that no valid policy is defined in your domain’s DMARC record. Without a DMARC policy, a DMARC record is of no use— it provides no protection from phishing and spoofing emails sent from your domain.
Crafting a follow-up email that gets results is an art form.
It’s about striking the right balance between being helpful and direct. You want to remind your recipient of your value without being too pushy and encourage them to act. Let’s take a look at some key details you should include in your email follow-ups.
Tackling common SPF errors: A cheatsheet for safer email authentication
by DuoCircle
SPF, or Sender Policy Framework, is the foundational authentication protocol that tells receiving servers which sources are allowed to send emails on behalf of your domain. Now, if something goes wrong with your SPF setup, it may not only have a direct impact on your email deliverability and security, but also have a ripple effect across other authentication checks, such as DKIM and DMARC. Emails may land in spam, get rejected outright, or leave your domain vulnerable to spoofing attacks—all because of a misconfigured SPF protocol.
This week’s cybersecurity round-up covers serious threats hitting various sectors, including transportation, healthcare, and retail. Key cybersecurity incidents include a massive data breach in a governmental department, a ransomware attack crippling life-threatening healthcare operations, and a sneaky job scam targeting recruiters. Major giants from the business world have also confirmed cyberattacks that impacted employees and disrupted critical business workloads. Read on for full details, known risks, and what’s being done in response, strengthening the defence mechanisms.
Affiliate email marketing is one of the most stable income channels for affiliates – open rates reach 50% and even more in some industries – but there are still quite a few obstacles to overcome, from spam filters to phishing attacks to fake sign-ups. As an advertiser, you’d like to nullify or at least mitigate all those risks, so you can get purchase-prone leads that match your demographics.
![Hackers Exploit Shellter, Anatsa Trojan Spreads, Pull Request Breach – Cybersecurity News [July 07, 2025]](https://www.duocircle.com/wp-content/uploads/2025/07/spf-record-check-8960.jpg)
![Fake Wallet Extensions, Qantas Hack Revealed, ICC Cyberattack Unveiled– Cybersecurity News [June 30, 2025]](https://www.duocircle.com/wp-content/uploads/2025/07/check-dmarc-record-3656.jpg)
![SonicWall Malware Warning, Crypto Phishing Scheme, Medical Data Exposed – Cybersecurity News [June 23, 2025]](https://www.duocircle.com/wp-content/uploads/2025/06/sender-policy-framework-7953.jpg)
![DMV Impersonation Scam, Scania Insurance Breach, Cock.li Records Exposed – Cybersecurity News [June 16, 2025]](https://www.duocircle.com/wp-content/uploads/2025/06/spf-record-7896.jpg)
![DOT Account Breach, Kettering Ransomware Attack, Recruiter Systems Compromised – Cybersecurity News [June 09, 2025]](https://www.duocircle.com/wp-content/uploads/2025/06/spf-record-check-9075.jpg)
