Survey of 307 Companies in Hyogo Prefecture Reveals Over Half Lack Email Spoofing Protection (DMARC), Over 90% Missing Security Headers
NQ Score
79/100
N1 Content Completeness
9
AI Summary (NQ-processed)
Japan Information Infrastructure Services conducted a web security survey of 307 corporate websites in Hyogo Prefecture, revealing that 55.1% lack DMARC email authentication and 92.5% are missing critical security headers like CSP. The full report is available for free download.
AI Analysis
Frequently Asked Questions
- Q: What was the purpose of this survey?
- A: To visualize the security status of corporate websites in Hyogo Prefecture and promote awareness, aiming to improve regional cybersecurity standards.
- Q: What risks exist if DMARC is not configured?
- A: Increases phishing risks via email spoofing and may cause legitimate emails to be marked as spam by major providers like Gmail and Microsoft.
- Q: What immediate actions can SMEs take?
- A: Implementing CSP, HSTS, and DMARC is highly effective. CSP, for example, can be added with just a few lines of code to prevent XSS attacks.
- Q: How were the survey participants selected?
- A: Companies located in Hyogo Prefecture and registered with gBizINFO were randomly selected based on publicly available information.
- Q: What does the full report include?
- A: It includes self-check checklists, configuration guides for nginx, Apache, and WordPress, and detailed explanations of each security measure’s impact and limitations.