65% of US-based companies were vulnerable to email phishing and impersonation attacks. Cybercriminals take advantage of this vulnerability to spoof email domains and send out fraudulent emails, posing to be you. Email domains generally operate via SMTP (Simple Mail Transfer Protocol), which is a communication protocol that enables the transfer of mail via digital platforms. With DMARC, the receiver’s Mail Transfer Agent (MTA) looks up the SPF, DKIM, and DMARC records of the sender to authenticate the sender. DMARC enforces the use of a combination of SPF and DKIM email authentication technologies to ensure only real emails are delivered to the end receivers.
Source: https://thehackernews.com/2020/12/how-dmarc-can-stop-criminals-sending.html