Interest in Cloud-Based Email Infrastructure Grows by 35% in 3rd Quarter of 2016

Cloud-based interest in email infrastructure trended up this past quarter. Port25, a Message Systems Company, tracks cloud-based interest (CBIs) among large volume senders based on evaluation and purchase requests received, in conjunction with overall site engagement. In Q3, CBIs on Port25's website grew by 34.97% over Q2, to a total of 48.2% of unique evaluation and purchase requests. more»

Yahoo Collaborating With US Intelligence Agencies

It was revealed yesterday that Yahoo has been scanning people's email for the federal government. This activity was, apparently, authorized by Yahoo CEO Marissa Meyer but not the former CSO Alex Stamos. Mr. Stamos left Yahoo in June 2015. He also publicly disagreed with the director of the NSA back in February 2015 about the NSA having access to encrypted data. more»

One-Click Unsubscription

Unsubscribing from mailing lists is hard. How many times have you seen a message "please remove me from this list," followed by two or three more pointing out that the instructions are in the footer of every message, followed by three or four more asking people to not send their replies to the whole list (all sent to the whole list, of course,) perhaps with a final message by the list manager saying she's dealt with it? more»

The Kindness of Strangers, or Not

A few days ago I was startled to get an anti-spam challenge from an Earthlink user, to whom I had not written. Challenges are a WKBA (well known bad idea) which I thought had been stamped out, but apparently not. The plan of challenges seems simple enough; they demand that the sender does something to prove he's human that a spammer is unlikely to do. more»

Trump's Fundraising Email - Bad Data Drives Delivery Problems

It's a wild election season here in the US. In the past few presidential elections, email has played a bigger and bigger role in messaging and fundraising. President Obama's campaign used email effectively, but sent huge volumes. In fact, the volume was so heavy, it led to a joke on the Daily Show... This year there is a stark difference in how the candidates are using email. more»

Growing Interest Abroad for Cloud-Based Email Infrastructure

Between September of 2015 and May 2016, (last 8 months) Port25 saw almost a 30 percent jump in new cloud-based email infrastructure interest outside the United States... While most of the influential senders are not abandoning on-premises mail transfer agent (MTA) solutions, many are looking to cloud infrastructure for managing higher-volumes by bifurcating individual email streams to the cloud. more»

Marketo's Path to Being Acquired

Happy Early Memorial Day. Once an ESP or marketing automation company declares itself for sale, there seems to be a mass exodus by investors, which sends up a red flag, (well in this case, a red & white striped flag). This past week there were rumblings about the potential suitors for Marketo. While it is rumored that German company SAP is the front-runner, there are many other potential suitors circling the marketing automation software company. more»

Perfect Storm Brewing at ESPs Amidst Growing PowerMTA Admin Crisis

Sometimes, a software company is as much about people as it is about technology. Who says PowerMTA admins don't have influence? Not only are they the influencers of our brand [Port25] they are also the main influencers and decision-makers when it comes to purchasing decisions. more»

Macro Observations Facing Email Infrastructure

Last month I attended the 36th annual M3AAWG conference in San Francisco, where esteemed members of the online messaging and anti-abuse community come together to make the Internet a safer and more secure environment. The sending community is highly influential especially among Email Service Providers (ESPs) and truly dominated the two-macro conversations that I participated in. These conversations have the industry in somewhat of a transition. more»

Internet Governance Forum Publishes BPs on Regulation and Mitigation of Unsolicited Communications

The IGF this morning published a number of reports, including the aforementioned one, at the URL provided, titled 'IGF 2015 Best Practice Forum Regulation and mitigation of unsolicited communications.' The reports can be found in the included URLs on the IGF Website. more»

What's ARC?

DMARC is an anti-phishing technique that AOL and Yahoo repurposed last year to help them deal with the consequences of spam to (and apparently from) addresses in stolen address books. Since DMARC cannot tell mail sent through complex paths like mailing lists from phishes, this had the unfortunate side effect of screwing up nearly every discussion list on the planet. Last week the DMARC group published a proposal called ARC, for Authenticated Received Chain, that is intended to mitigate the damage. What is it, and how likely is it to work? more»

Logjam, Openssl and Email Deliverability

RHEL6/Centos6 (and presumably RHEL7/Centos7) machines with the latest openssl packages now refuse SSL connections with DH keys shorter than 768 bits. Consider RHEL6 sendmail operating as a client, sending mail out to a target server. If the target server advertises STARTTLS, sendmail will try to negotiate a secure connection. This negotiation uses openssl, which will now refuse to connect to mail servers that have 512 bit DH keys. The maillog will contain entries with "reject=403 4.7.0 TLS handshake failed". more»

The Cycle of E-Mail Security

Stepping back from the DMARC arguments, it occurs to me that there is a predictable cycle with every new e-mail security technology... Someone invents a new way to make e-mail more secure, call it SPF or DKIM or DMARC or (this month's mini-fiasco) PGP in DANE. Each scheme has a model of the way that mail works. For some subset of e-mail, the model works great, for other mail it works less great. more»

Rodney Joffe Wins a Well-Deserved Mary Litynski Award

Every year M3AAWG gives an award for lifetime work in fighting abuse and making the Internet a better place. Yesterday at its Dublin meeting they awarded it to Rodney Joffe, who has been quietly working for over 20 years. I can't imagine anyone who deserves it more. more»

Facebook and PGP

Facebook just announced support for PGP, an encrypted email standard, for email from them to you. It's an interesting move on many levels, albeit one that raises some interesting questions. The answers, and Facebook's possible follow-on moves, are even more interesting. The first question, of course, is why Facebook has done this. It will only appeal to a very small minority of users. Using encrypted email is not easy. more»

News Briefs

DNC Emails Hacked Using Fake Gmail Login Forms

Massive Cyberattack Aimed at Flooding .Gov Email Inboxes With Subscription Requests

Nearly 1 Million IP Addresses Used by Attackers on a Single Target

Corporate Email Phishing Scams Result in $3.1B Loss, Near 1300% Increase in 18 Months

IPv6 Will Change the Face of Email Filtering, Says Report

Security Firm Recovers Over 272 Million Stolen Credentials from a Collector

U.S. House of Representatives Passes H.R. 699, the Email Privacy Act

Internet Infrastructure Coalition (i2Coalition) Joins M3AAWG to Reduce Hosting Industry Abuse

In Memory of Ray Tomlinson, April 23, 1941 - March 5, 2016

Email More Secure Today Than Two Years Ago, Research Suggests

Group Working on Securing Email Using DNS

Dave Crocker and John Levine Discuss Current Dealings With Spam (Video)

FBI Pushing Plans to Force Surveillance Backdoors on Social Networks, VoIP, and Email Providers

Iran Blocks HTTPS, 30 Million Reported Losing Email Access

Happy Canada Day from the CRTC

Chinese Newspaper Warns Google Against Playing a Risky Political Game

New Anti-phishing Initiative Introduced by Yahoo!

Google: China Interfering with Gmail and Attempting to Conceal the Act

Microsoft, Federal Agencies Take Down Rustock Botnet

Conflict Over Efforts to Develop a Best-Practices Document for Blacklist Operators

Most Viewed

Most Commented

Port25 Updates – Sponsor

Port25 Announces Release of PowerMTA V4.5r5

Port25, A Message Systems Company, has just released its latest version of PowerMTA v4.5r5 and PowerMTA Management Console v1.5r5. Highlighted here are the major features of this particular release ›››

New Case Study: Replaces 30 Postfix Servers with a Single PowerMTA helps job seekers access millions of jobs gathered from hundreds of thousand's of recruitment agencies and employer sites across Europe. ›››

An Update on Port25 and the Future of PowerMTA - One Year Later​

The following is written by Juan Altmayer Pizzorno, the original author of PowerMTA. Pizzorno has been developing email server software for over 25 years and currently serves as Sr. VP of Research & Development at SparkPost. He co-founded and was CTO of Port25 Solutions. ›››

Encrypting Inbound and Outbound Email Connections with PowerMTA

Encryption is becoming increasingly necessary when transferring data across the internet, and email is no different. In PowerMTA 4.5 and later there are several methods to encrypt both inbound and outbound connections. Here we'll provide a quick overview of how they may be achieved. Keep in mind, this document only deals with encrypting the channel, not the content. ›››

V12 Group Sustains Customer Satisfaction by Deploying PowerMTA for Launchpad Platform

With more than 8,000 platform users, 85 percent of which are brand-name retailers, reaching out to 110M US households, V12 needed an MTA (Messaging Transfer Agent) that would execute high delivery rates, offer more control, and easily enable the latest authentication protocols. ›››

PowerMTA Now Offers Scheduled Delivery Control

In PowerMTA v4.5 and later versions messages can now be scheduled for delivery. The feature allows for scheduling multiple delivery windows. ›››

DKIM for ESPs: The Struggle of Living Up to the Ideal

Given the increase in email fraud (phishing) and an increasingly complex email landscape, it is increasingly important for email service providers to implement email authentication properly. ›››

Industry Updates

Participants – Random Selection