GBAF Logo
Graph depicting UK companies' actions against email-borne cyber attacks - Global Banking & Finance Review
This image illustrates the findings of Agari's Q3 UK Email TrustIndex, highlighting that only 25% of UK companies are implementing necessary email security measures to combat cyber attacks.
Top Stories

ONLY 25% OF UK COMPANIES TAKING ACTION AGAINST EMAIL-BORNE CYBER ATTACKS

Published by Gbaf News

Posted on January 6, 2015

3 min read

· Last updated: April 17, 2020

Add as preferred source on Google
fintech cybersecurity Digital banking financial services technology

Agari Releases Q3 UK Email TrustIndex

Agari, the leading provider of real-time, data-driven security solutions that detect and prevent advanced email cyber-attacks, has announced the results of its Q3 UK Email TrustIndex. Covering the period from July to September 2014, the report applies big data insights to identify sectors and a selection of companies in Europe that are vulnerable to email-borne cyber-attacks. With 11 vertical industries and 16 UK companies examined, the report revealed that only four are currently taking action to stop cybercriminals targeting their customers by exploiting their brand name via email.

The findings of the Q3 UK TrustIndex can be found here: http://info.agari.com/rs/agari/images/TrustIndex_UK_2014.pdf

Patrick Peterson, CEO Agari

Patrick Peterson, CEO Agari

Methodology: Assessing Email Security Measures

To derive the TrustScore, Agari looked at the highest volume email sending domains for all 16 companies and analysed their implementation of email authentication standards, including SPF, DKIM, and DMARC. SPF allows email senders to specify which IP addresses are allowed to send email from a given domain. DKIM complements SPF by giving email senders a way to digitally sign all the outgoing email, letting email receivers confirm that no changes have been made to the email since it was sent. Finally, DMARC allows email senders to tell receivers when they should rely on DKIM and SPF for a given domain, and what to do when messages fail those tests. Only companies who implement all three standards with some level of success can achieve scores in the highest tier.

Expert Insights on UK Business Vulnerabilities

Patrick Peterson, CEO and founder of Agari, makes the following comments on the report:

“The findings of this Email TrustIndex indicate that many UK businesses are still not taking the necessary steps to protect their customers from email-borne phishing attacks. Indeed, it’s concerning to see that so many well-established organisations, including leading banks and retailers, are easy targets. Email was designed with a fundamental flaw – it does not support authentication. This means that any criminal can send an email purporting to be from a company.

“Email is the most simple and immediate way of reaching and staying in touch with customers, and ownership for defending customers from cyber-attacks in this critical channel lies with the enterprise. As this report highlights, the time has come to fully confront the challenge of email security. Implementing email authentication standards that detect and prevent email cyber threats ensures email can remain a trusted communication channel. While there are a select few organisations that are starting to adopt all three standards, a number of them are only implementing one or two, with SKY, Ladbrokes and Deutsche Bank not progressing with any of the three. This isn’t good enough. Only by providing comprehensive email authentication that includes SPF, DKIM and DMARC, will organisations be defending their reputation and fulfilling their responsibility to their customers.”

Key Takeaways

  • Only 25% of UK companies evaluated (4 out of 16) implemented all three email authentication standards—SPF, DKIM, and DMARC.
  • Well‑known UK banks and retailers like Deutsche Bank, Sky, and Ladbrokes implemented none of the three standards, making them 'easy targets'.
  • Sectors such as social media, online retailers, and online payment services performed better in email security.
  • Agari’s TrustIndex assessed companies between July and September 2014 using data‑driven security analysis targeting email‑borne cyber‑attacks.
  • Agari emphasizes that comprehensive email authentication is essential for protecting brand reputation and customer trust.

References

Frequently Asked Questions

What is the Agari Email TrustIndex?
A quarterly index that scores companies’ deployment of email authentication standards—SPF, DKIM, and DMARC—to assess their resilience against email‑borne cyber‑attacks.
Which email standards are assessed?
The standards are SPF, DKIM, and DMARC—critical protocols that authenticate email origins, verify integrity, and instruct recipients how to handle failed authentication.
How many UK firms were evaluated and how many took action?
Agari evaluated 16 UK companies across 11 sectors; only four were implementing all three authentication standards, meaning 75% took no comprehensive action.

Tags

Related Articles

Image for Why Some Businesses Thrive in Every Economic Cycle

Why Some Businesses Thrive in Every Economic Cycle

Image for Why the Most Valuable Business Decisions Often Look Wrong at First

Why the Most Valuable Business Decisions Often Look Wrong at First

Image for Why the Biggest Companies Don’t Always Win

Why the Biggest Companies Don’t Always Win

Image for Why Some Businesses Seem to Grow Without Chasing Growth

Why Some Businesses Seem to Grow Without Chasing Growth

Image for Why Being First Matters Less Than Most Businesses Think

Why Being First Matters Less Than Most Businesses Think

Image for What Businesses Learn Too Late About Sustainable Success

What Businesses Learn Too Late About Sustainable Success

More from Top Stories

Explore more articles in the Top Stories category

Image for The Quiet Strategy Behind Companies That Thrive Through ChangeThe Quiet Strategy Behind Companies That Thrive Through Change
The Quiet Strategy Behind Companies That Thrive Through ChangeThe Quiet Strategy Behind Companies That Thrive Through Change
Image for The Quiet Pattern Behind Companies That Last for Generations
The Quiet Pattern Behind Companies That Last for Generations
Image for The Hidden Economics of Business Longevity
The Hidden Economics of Business Longevity
Image for The Hidden Cost of Short-Term Thinking in Business
The Hidden Cost of Short-Term Thinking in Business
Image for The Business Advantage That Becomes More Valuable During Uncertainty
The Business Advantage That Becomes More Valuable During Uncertainty
Image for Why the Most Valuable Economic Asset Is Something You Can't Measure
Why the Most Valuable Economic Asset Is Something You Can't Measure
Image for The Quiet Return of the Patient Economy
The Quiet Return of the Patient Economy
Image for The New Wealth Equation: Why the Future May Belong to Economies That Create More With Less
The New Wealth Equation: Why the Future May Belong to Economies That Create More With Less
Image for The New Discipline of Growth: Why Smart Economies Are Learning to Move With More Care
The New Discipline of Growth: Why Smart Economies Are Learning to Move With More Care
Image for The Most Valuable Resource in the Global Economy Isn’t Money Anymore
The Most Valuable Resource in the Global Economy Isn’t Money Anymore
Image for The Invisible Asset Reshaping Global Finance
The Invisible Asset Reshaping Global Finance
Image for The Hidden Value of Time: Why the World's Most Successful Businesses Think Differently About Growth
The Hidden Value of Time: Why the World's Most Successful Businesses Think Differently About Growth
View All Top Stories Posts