Valimail

06/04/2026

You update a DNS record.
You double-check it.
You refresh 17 times.

Nothing changes.

Welcome to DNS propagation—the part where everything is working… just not everywhere yet.

It’s not instant, it’s not broken, and it’s definitely not personal. It’s thousands of servers around the world updating on their own schedules.

The good news: Most changes don’t take 24–48 hours (despite what every help doc says).

The bad news: You still can’t rush the internet.

But you can stack the odds in your favor—lower TTL ahead of changes, use a solid DNS provider, and verify your authoritative records first.

Do that, and propagation becomes a lot less mysterious—and a lot less frustrating.

Learn more in this quick guide: https://bit.ly/3PFyMBM

DNS propagation can take minutes or days. Learn what affects the timing, how to check your status, and what you can do to make it go faster.

06/03/2026

DMARCbis now has a new name (and new RFCs to match).

The updated DMARC specs are now published as RFC 9989, RFC 9990, and RFC 9991. The changes don’t rewrite DMARC, but they do clean up how it works in practice.

For most senders, the core takeaway is simple: DMARC still does the same job it was built to do: help protect domains from phishing and spoofing.

But these updates make the standard clearer, more deterministic, and better suited for modern sending environments.

Get the latest here: https://bit.ly/43hrtTZ

Learn what the new DMARC RFCs mean, including DNS tree walk support, reporting changes, and updates to replacing DMARCbis.

06/01/2026

DKIM has been quietly doing its job for over 20 years, but the way email is used (and abused) has changed a lot since then.

A new proposal from the Internet Engineering Task Force aims to bring it up to speed: DKIM2.

It’s designed to tackle some long-standing challenges that have become harder to ignore:

- Replay attacks that reuse valid signatures at scale
- Backscatter from misdirected bounce messages
- Legitimate message changes that break authentication

It’s still early, and the spec is evolving, but this is a valuable conversation if you care about email security, authentication, or deliverability.

Read more here: https://bit.ly/4wSYGm4

DKIM2 is coming: A proposed update to email authentication that tackles replay attacks, backscatter, and broken signatures to strengthen modern email security.

05/13/2026

Email attackers don’t think in silos, so why would we defend that way?

That's why Valimail is now an official partner with Sublime Security, bringing outbound authentication and inbound detection together, and closing gaps left by legacy approaches.

Valimail stops spoofing and impersonation at the source. Sublime detects and responds to advanced phishing and BEC threats in real time.

It’s a more complete way to protect email without adding more complexity.

Learn more about the partnership: https://bit.ly/4djZCqV

04/30/2026

Seeing SPF pass, but still having deliverability issues?

It might be an alignment problem.

SPF checks one domain. DMARC checks another. If they don’t match, alignment fails — even when everything “looks correct.” That’s why your emails still end up in spam.

Learn more about what’s causing the failure, and how you can fix it: https://bit.ly/41UUGn4

04/23/2026

Most DMARC projects stall rather than fail, usually because teams don’t have full visibility into who’s sending on their domain.

Without that, moving to enforcement feels risky, and progress slows down.

Getting to enforcement is less about the policy and more about everything behind it: identifying senders, aligning them, and making sure nothing breaks along the way.

This guide breaks down how to evaluate a DMARC-as-a-service provider so you can move forward with confidence: https://www.valimail.com/blog/find-dmarc-as-a-service-provider/?utm_campaign=organic_social&utm_source=facebook&utm_medium=organic_social&utm_content=1776708020

04/22/2026

If your organization relies on ticket sales or donations, email is part of your revenue engine.

It’s also a target.

In arts and recreation, DMARC enforcement is well below the global average—and a large portion of domains still aren’t protected.

That gap isn’t theoretical. It shows up as fake ticket confirmations, fraudulent donation requests, and spoofed event emails.

Watch the video for a quick look at the data, then see how you compare in the full report: https://bit.ly/4czjN3B

04/16/2026

Building trust through inboxes is harder than it used to be.

People are more cautious. Phishing is more convincing. And distractions are everywhere.

BIMI helps to close the gap by pairing your logo with verified email authentication so recipients get clear, immediate verification that it’s you.

Here’s a closer look at how it works: https://bit.ly/4dGaWPX

04/15/2026

Last year, we helped reject over 2.5 billion suspicious emails. Attackers aren’t slowing down — and now they’re using AI to scale faster than ever.

At the same time, many domains still aren’t enforcing DMARC. That gap is leaving a lot of room for spoofing and impersonation.

Here’s a quick look at the state of DMARC and why enforcement matters so much.

P.S. You can get the full 2026 State of DMARC report here: https://bit.ly/41v4jbS