Google is cracking down on phishing attempts by automatically blocking emails from bulk senders who fail to meet stricter security guidelines. These guidelines focus on email authentication standards (SPF/DKIM/DMARC), designed to prove the sender’s identity and prevent spoofing.
Bulk senders, those sending over 5,000 daily messages to Gmail accounts, must adhere to these standards. They must also avoid unsolicited emails, have clear unsubscribe options, and maintain low spam rates.
Failure to comply could lead to emails being rejected or automatically marked as spam. Google will begin rejecting non-compliant emails in April 2024, but is issuing temporary errors as warnings beforehand to help senders adjust.
These changes bolster Google’s already robust defense against phishing. Their AI-powered systems already block a staggering 15 billion unwanted emails each day.
“Our aim is to ensure users can trust the source of an email,” said Neil Kumaran, Group Product Manager for Gmail Security & Trust. “This update limits the loopholes that attackers exploit.”
