For this month of June, I have selected and analyzed an e-mail from the Maaf received in my Gmail Inbox (Promotions tab). For the month of May, I had analyzed a Nickel email dealing with phishing, this month I've decided to focus on a topic related to cybersecurity.
But what is Maaf?
MAAF Assurances is a French mutual insurance company for individuals and professionals!
As a Maaf customer with multiple contracts, I regularly receive emails from them. Even if I don't open many of them (sorry), some of them, because of their subject, catch my attention. Such is the case with the one below 🙂
The pluses that caught my attention:
As with every analysis, I always start with the points that caught my attention, here we'll find the authentications and the content/editing/design of the email.
Authentication SPF / DKIM / DMARC It's perfect! Only one domain (information.maaf.fr) used for SPF & DKIM authentication, so we have an alignment of domains with the domain of the sending address.
The SPF record has a STRICT (-all) qualifier (6 netblocks are authorized, i.e. a maximum of 1,536 IPv4). As for the DKIM signature, the signed domain is the sender domain with an advanced encryption level (2048-Bits). As for the DMARC record, this is placed on the sub-domain and is restrictive (QUARANTINE) with a filtering level of 100% (thus eligible for BIMI).
* SPF (MailFrom) :information.maaf.fr
' STRICT Qualifier (v=spf1 include:spf-62.mm-send.com include:mm-send.com -all
)
* DKIM (From) :information.maaf.fr
' encrypted key with a length of 2048-Bits
* DMARC (From) :information.maaf.fr
' QUARANTINE policy (p=quarantine) with filtering at 100%
* DMARC (root) :maaf.fr
NONE policy (p=none) with strict SPF / DKIM alignment!?
A small point for improvement, the root domain also has a DMARC record but at NONE (so no restrictions) with STRICT alignments for SPF and DKIM (which in itself is useless if no restrictive policy is applied...). It would have been better to put these strict alignments on the subdomain, which itself has a restrictive policy 🙂
Email content As an insurer, Maaf has every interest in alerting its customers to the various contracts they can take out, but not only! This is the case here with this email on the subject of cybersecurity => Mr. Fischer, strengthen your cybersecurity
This email contains several interesting elements:
- Customization of the object;
- A preheader that complements the subject line: Protect yourself against cyberthreats ;
- A reminder of good practices related to the content of emails / SMS to improve the security of personal data;
- Separate content blocks, each with its own CTA;
- Maaf's color codes;
- A well-managed Dark Mode
The - that caught my attention :
As for the points for improvement in this email from Maaf, I can only think of one, and it concerns BIMI authentication!
BIMI authentication Unfortunately, no records were found for the sender subdomain (information.maaf.fr) and on the root domain (maaf.fr). Apart from the root domain, which is not eligible for BIMI due to its NONE DMARC policy, the sub-domain could have benefited from BIMI (unless it's currently being studied by them and Maff's IT department is waiting to modify the root domain's DMARC policy before attacking BIMI...).
Even though Microsoft doesn't currently support BIMI, if I had received this email in my Inbox Gmail, I would have been entitled to the logo and the blue checkmark! Finally, given the theme of the email, BIMI would have been a bit (even if BIMI doesn't mean that the email received is 100% reliable, let's say 99.99%) and would have allowed me to see the email more easily and quickly in my Inbox thanks to the logo display!
How do you feel about this email from Maaf? Do you also receive such emails in your Inbox? And above all, do you apply their recommendations?
Please visit our page dedicated to our e-mail selections and analyses 🙂
Enjoy your reading!