Businesses Get Failing Grade at Protecting Consumers From Malicious Email and Rogue Websites
Nearly three-quarters of organizations, from government agencies to e-commerce retailers to social media sites, failed to adequately protect users’ privacy and identity from abuse. This was the key finding from the Online Trust Alliance's (OTA) 2011 Online Safety Honor Roll report released this week. The OTA's third-annual survey examined 1,112 domains, their published DNS records and over 500 million email messages purporting to come from them. The report also includes evaluation of best practices to help protect consumers from forged email, phishing sites and malware.
Here are some more findings of the report:
- Twenty-six percent of the companies surveyed earned entry into the OTA 2011 Online Safety Honor Roll for their adoption of EV SSL certificates and one or more forms of email authentication. This represents more than a three-fold increase from last year.
- The FDIC 100 led all surveyed sectors with nearly 27 percent of its companies making the honor roll, followed by the Fortune 500 (24 percent) and federal government sites (12 percent).
- Across all surveyed sectors, more than 56 percent of companies have adopted either Sender Policy Framework (SPF) or DomainKeys Identified Mail (DKIM), two proven standards to help identify and block deceptive email.
- EV SSL is nearing 45 percent adoption across top retail and banking sites, reflecting a year-to-year increase of over 78 percent. Adoption increased 68 percent across all segments.
- Ninety-two percent of the social media sites examined have adopted email authentication practices, followed by FDIC banks (59 percent) and government agency sites (38 percent).