Only 22.6% of top domains enforce DMARC, leaving email open to spoofing
A DNS analysis of 50,000 widely-linked domains conducted by MailTester Ninja in mid-2026 reveals significant gaps in email security configuration. While 79.9% of domains publish MX records and 75.8% have SPF records, only 64% have adopted DMARC policies. More critically, just 22.6% of all domains enforce DMARC at the strictest level (p=reject), meaning most domains publish a policy without actually acting on it. Google Workspace, Microsoft 365, and self-hosted solutions collectively account for over 83% of mail infrastructure among the sampled domains. The researchers have released the dataset under a CC BY 4.0 license with a live dashboard, arguing that deliverability decisions should be grounded in data rather than assumption.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in