Phishing is a type of online scam that targets consumers by sending them an e-mail that appears to be from a well-known source such as an internet service provider, a bank, or a mortgage company. It asks the consumer to provide personal identifying information, and then the scammer uses the information to open new accounts or invade the consumer’s existing accounts. Research showed 86% of companies have implemented SPF email authentication but fewer than 10% have implemented DMARC, known as Domain Message Authentication Reporting and Conformance. By using both, companies can greatly reduce their chances of being scammed.

https://www.ftc.gov/news-events/press-releases/2017/03/online-businesses-could-do-more-protect-their-reputations-prevent?utm_source=govdelivery