Most federal IT contractors don't protect emails from fraud

Email app
Photo: Jaap Arriens/NurPhoto via Getty Images

Only one of the top 50 federal IT contractors has fully implemented an email protocol designed to prevent fraud, the Global Cyber Alliance advocacy group reports.

Why it matters: Without a contractor using the DMARC protocol, recipients of emails claiming to be from that contractor will not automatically double check whether those emails are authentic. That means incoming emails could impersonate the contractor and fraudulently ask a victim to transfer money for unpaid bills or log in to a phishing website.