Can Your Business Email Be Spoofed?

In our study of 118 GTA business domains, only 40% were fully protected against email impersonation. Enter your domain for a free, instant check of the three records that stop it: SPF, DKIM and DMARC.

Reads only public DNS records. Nothing is scanned, accessed or stored.

What this check looks at

Three public DNS records protect your domain from email impersonation. SPF lists the servers allowed to send mail for you. DKIM adds a tamper-proof signature to every message. DMARC ties them together and tells receiving servers to block mail that fails — but only when its policy is set to quarantine or reject. Missing or monitor-only records are the gap behind most business email compromise and invoice-redirection fraud.

We ran this exact review across 118 GTA businesses — read the full study. For a deeper primer, see our guide to SPF, DKIM and DMARC explained, or explore our managed email security services for Toronto and GTA businesses.

This tool performs read-only lookups of public DNS records via DNS-over-HTTPS. It does not access, scan, or probe any system, and results are not stored. DKIM detection covers common selectors only and can miss custom configurations.

We value your privacy

This website uses cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies. Read our Cookie Policy and Privacy Policy.