In this talk we will start by explaining which standards are available to increase e-mail security. We will briefly discuss protocols such as: STARTTLS, SPF, DKIM, DMARC, DANE and MTA-STS. We also discuss advanced SPF options. Finally, we will link all of those protocols to detect if our domains are being abused for phishing attacks.
By Arnold Hölzel and Karl Lovink
Full Abstract & Presentation Materials: https://www.blackhat.com/us-19/briefings/schedule/#how-to-detect-that-your-domains-are-being-abused-for-phishing-by-using-dns-15159