A recent report issued by the Federal Trade Commission (FTC) found that some web hosting services marketing their services to small businesses are not providing email authentication and anti-phishing technologies as part of their standard service offerings. The report, issued by the FTC’s Office of Technology Research & Investigation, examined the security features of hosting plans offered by 11 web hosts that provide their services to small businesses.
The report found that only a few of the hosts reviewed by the FTC notify users of their email authentication technologies while certain of the hosts do not support such technologies. Email authentication protects domains from being used in phishing scams. Domain-level authentication can verify the domain from which a message claims to be sent. In addition, an emailing domain can instruct receiving email servers how to handle unauthenticated messages, and can send a message to receiving servers to send alerts to the emailing domain when spammers attempt to send messages that claim to be from an address at the emailing domain.