Hey everyone! I'm in charge of IT at a small company, and since 2015, we've been using our main domain, XYZ.com, for everything like M365 and our website. Recently, I've purchased additional top-level domains (TLDs) such as XYZ.pt and XYZ.it to protect our brand and clients from phishing and spam attacks. My question is: is it enough just to buy these domains, or do I need to configure them as my own domains in Microsoft Exchange? Any advice would be appreciated!
1 Answer
It's crucial to set up SPF, DKIM, and DMARC for those new domains. This will help ensure that emails sent from them are marked as spoofed if they're not verified. Just buying the domains isn't sufficient; you need to implement these security measures to effectively combat phishing. You can check out Cloudflare's guides for a better understanding of these records!
That makes sense! I was wondering if just buying the domains would cover the basics. Thanks for clarifying!