Boston: Facebook, Google Inc and Microsoft Corp have joined with financial firm’s Bank of America Corp, Fidelity Investments and eBay Inc’s payPal to make a set of industry standards for preventing criminals from sending out spam emails that emerge to come from corporate email addresses.
Fraudsters often create as banks and other trusted firms in try to convince email recipients to provide payment card numbers, bank account information and other personal data or click on links that contaminate computers with malicious software.
The latest approach calls for email providers and businesses to assault spammers by coordinating on a huge scale the use of two existing technologies for email verification known by the acronyms SPF and DKIM, which have yet to be broadly adopted.
PayPal is one company that presently uses SPF and DKIM technology standards to fight email spoofing, but merely through partnerships with Yahoo Inc and Google, said Brett McDowell, a security manager at PayPal, who serves as chairman of the group that developed the new standard.
The group goes by the name DMARC.org, which stands for Domain-based Message Authentication, Reporting and Conformance.
Other companies concerned in the group comprise American Greetings Corp, LinkedIn Corp and Yahoo as well as confidentially held Agari, Cloudmark, eCert, Return Path and the Trusted Domain Project.