[brightball]

Microsoft's disjointed approach to email doesn't surprise me here. They're actively enabling more phishing and fraud by not respecting the DMARC standard or participating in sending aggregate reports.

For all that people like to bag on Google recently, Google has worked harder than anybody on this.

[donmcronald]

> They're actively enabling more phishing and fraud by not respecting the DMARC standard or participating in sending aggregate reports.

Yep. There are situations where they'll simply ignore DMARC aligned messages if they don't like the content, filter them into (admin only) quarantine, and refuse to let you create rules for special cases so you receive important messages.

I know because I've had it happen.

[natch]

> For all that people like to bag on Google recently, Google has worked harder than anybody on this.

Oh come on. Back when they first built Gmail, maybe sure.

But in the last 10 years or so? They’ve been totally ignoring the fact that they categorize their own non-marketing non-spammy emails, specifically requested on specific non-spammy topics by the user, generated by Google, and sent by Google, as spam. I don’t think they have worked harder than anybody on this. Snacked harder, maybe.

[brightball]

For advancement and adoption of standards to help combat this stuff, yes they have indeed. Yahoo as well.

Most other companies seem interested in selling band-aids to repeated cuts than preventing the cuts in the first place.

[wizofaus]

But there are still no truly widely used standards to ensure emails are actually from the claimed sender. Many of the most popular phone-based email apps (including Google's) don't even show the from/reply-to addresses by default, and often make it hard to determine what URLs embedded links refer to.

[brightball]

Verifying they are from the actual domain is a huge step in the right direction though.

Beyond that, there’s still plenty of work to do but the surface area covered by wide spread DMARC adoption is huge.

[CamperBob2]

Then again, Google benefits if email goes away entirely. Ditto Meta and, yes, Microsoft.

We are seeing the initial skirmishes in a knock-down, drag-out war that users are going to lose.