Agari in Washington Post
But Congress doesn’t seem to be paying much attention.
When lawmakers convened Tuesday for a hearing about the decennial count, government auditor Nick Marinos described a litany of vulnerabilities that could leave Americans’ information hackable — and that are far more pressing because this is the first census that will be conducted primarily online. …
A study by the email security firm Agari of 12 candidates found that only two of them were fully using the tool called Domain-based Message Authentication, Reporting, and Conformance, or DMARC — Sen. Elizabeth Warren (D-Mass.) and former Massachusetts governor Bill Weld, who is launching a long-shot challenge to President Trump for the Republican nomination.
DMARC basically verifies that emails that look as if they come from an organization’s Web domain — such as ElizabethWarren.com — were actually sent from that domain.
Another email security firm, ValiMail, showed me a separate tally that found former vice president Joe Biden was also protected by DMARC — but was directing phony emails to recipients’ spam folders rather than rejecting them entirely.
Agari Chief Marketing Officer Armen Najarian told me that sending phishing emails to a spam folder isn’t good enough when it comes to political campaigns, though. He noted that the spearphishing email that allowed Russian hackers to compromise Hillary Clinton’s 2016 campaign first arrived in chairman John Podesta’s spam folder. …