--- title: "Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement | DMARC Report" description: "Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement from DMARC Report explains practical steps for email authentication, domain." image: "https://dmarcreport.com/og/blog/mail-check-web-check-retirement-ncsc-announces-end-security-tools.png" canonical: "https://dmarcreport.com/blog/mail-check-web-check-retirement-ncsc-announces-end-security-tools/" --- Quick Answer The three core email authentication standards - SPF (RFC 7208), DKIM (RFC 6376), and DMARC (RFC 7489) - work together to verify that an email genuinely originates from the domain it claims to represent. DMARC Report Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement Related: [Free DMARC Checker](/tools/dmarc-checker/) Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fmail-check-web-check-retirement-ncsc-announces-end-security-tools%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Mail%20Check%20and%20Web%20Check%20to%20No%20Longer%20Be%20Available%20as%20NCSC%20Announces%20Retirement&url=undefined%2Fblog%2Fmail-check-web-check-retirement-ncsc-announces-end-security-tools%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fmail-check-web-check-retirement-ncsc-announces-end-security-tools%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fmail-check-web-check-retirement-ncsc-announces-end-security-tools%2F&title=Mail%20Check%20and%20Web%20Check%20to%20No%20Longer%20Be%20Available%20as%20NCSC%20Announces%20Retirement "Share on Reddit") [ ](mailto:?subject=Mail%20Check%20and%20Web%20Check%20to%20No%20Longer%20Be%20Available%20as%20NCSC%20Announces%20Retirement&body=Check out this article: undefined%2Fblog%2Fmail-check-web-check-retirement-ncsc-announces-end-security-tools%2F "Share via Email") ![Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement](https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-record-6071.jpg) ![Dmarc analyzer 6716 150x150](https://media.mailhop.org/dmarcreport/images/2026/03/dmarc-analyzer-6716-150x150.jpg) > From a product strategy perspective, DMARC reporting is evolving from a security tool to a business intelligence platform, says Brad Slavin, General Manager of DuoCircle. The data in aggregate reports tells you not just who’s spoofing you, but who’s sending legitimate email on your behalf - and whether they’re doing it correctly. The three core email authentication standards - SPF ([RFC 7208](https://datatracker.ietf.org/doc/html/rfc7208)), DKIM ([RFC 6376](https://datatracker.ietf.org/doc/html/rfc6376)), and DMARC ([RFC 7489](https://datatracker.ietf.org/doc/html/rfc7489)) - work together to verify that an email genuinely originates from the domain it claims to represent. DMARC Report Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement ```

00:00 ``` / ``` 2:08 ``` RSS Feed ``` Share Link Embed ``` /\*! This file is auto-generated \*/ ’ title=“Embed Code” class=“input-embed input-embed-39950” readonly/> ``` ``` In 2017, when most organizations had limited to no visibility into the external \*\*security posture of their domains and websites, the [National Cyber Security Centre](https://en.wikipedia.org/wiki/National%5FCyber%5FSecurity%5FCentre%5F%28United%5FKingdom%29) introduced Mail Check and Web Check as part of its Active Cyber Defence Programme. For nearly a decade, these tools were publicly accessible and helped organizations **identify misconfigurations**, security gaps, and vulnerabilities that attackers could exploit. However, today, the [cybersecurity](https://dmarcreport.com/blog/email-security-meets-cybersecurity-understanding-the-role-of-dmarc-reports/) threat landscape has become far more sophisticated and fast-evolving than when these tools were first introduced. Now that most organizations rely on [cloud environments](https://www.wezengroup.com/en/cloud-environment-providers-and-security/) and [third-party vendors](https://www.upguard.com/blog/third-party-vendor), these tools no longer suffice.In fact, with such surface-level insights, you get only a partial view of your organization’s entire digital footprint.![Dmarc generator](https://media.mailhop.org/dmarcreport/images/2026/03/dmarc-generator-2970.jpg) Considering today’s broader and more dynamic attack surface, the NCSC realised that you need more advanced tools to manage a \*\*complex digital ecosystem that requires more than a basic external monitoring tool . This is why they are now rolling back these services. As per the latest notification by the NCSC, [Mail Check and Web Check](https://www.infosecurity-magazine.com/news/ncsc-retire-web-check-mail-check/) will no longer be operational from 31 March 2026. ## Why did Mail Check and Web Check exist in the first place? Mail Check and Web Check were never meant to be permanent services . They were launched in 2017 as part of the [Active Cyber Defence Programme](https://www.linkedin.com/pulse/implementing-active-cyber-defense-comparative-study-us-urakawa-qmkrc) to address the \*\*growing security concerns across UK government domains. At that time, [domain spoofing](https://www.pcmag.com/news/nsa-warns-of-north-korean-hackers-spoofing-emails-from-legit-domains) had become a serious concern, and \*\*government services were the most impersonated and targeted by citizens. This raised concerns in the National Cyber Security Centre, as attackers were exploiting weak email authentication and misconfigured domains to send fraudulent messages that appeared to originate from trusted government institutions. To address this problem, the NCSC encouraged organizations to implement [DMARC](https://dmarcreport.com/), which enabled them to \*\*prevent unauthorized senders from sending emails on their domain’s behalf. The strategy became so effective that it blocked nearly [half a billion phishing emails before they reached customers](https://www.gov.uk/government/news/record-number-of-fake-hmrc-websites-deactivated?utm%5Fsource=chatgpt.com) ![Dmarc check](https://media.mailhop.org/dmarcreport/images/2026/03/dmarc-check-6408.jpg) Mail Check helped scale this success across the \*\*public sector by allowing you to monitor your [email authentication](https://dmarcreport.com/blog/why-email-security-matters-and-how-to-get-it-right/) configurations, identify misconfigurations, and detect spoofing attempts targeting your domains. The platform provides visibility into how your domain is being used, the authentication results, and the sources sending emails on behalf of your organization. As for Web Check, it focused on the web side of things. This platform allowed you to scan your public-sector domains for **common vulnerabilities**, configuration issues, and missing security controls that could expose websites to attacks or enable [malicious actors](https://www.reuters.com/world/us/malicious-actors-using-ai-pose-senior-us-officials-fbi-says-2025-05-15/) to exploit trusted government services. ![Dmarc record generator](https://media.mailhop.org/dmarcreport/images/2026/03/dmarc-record-generator-3072.jpg) ## What does the retirement of Mail Check and Web Check mean to organizations? Now that Mail Check and Web Check will no longer be available from **31 March 2026**, if you relied on these platforms, you will need to reevaluate how you monitor the [security posture](https://www.ibm.com/think/topics/security-posture) of your domains and websites. Once these services are retired, you will even stop receiving any updates or alerts related to your domains and websites, such as email authentication issues, missing certificates, or any DNS misconfigurations. Although these tools only enabled monitoring at a basic level, they still worked well because they provided a simple way to keep track of all major security-related issues that might be affecting the organization’s [public-facing infrastructure](https://www.threatngsecurity.com/glossary/public-facing-infrastructure). ![Gmail dmarc](https://media.mailhop.org/dmarcreport/images/2026/03/gmail-dmarc-9271.jpg) The retirement of these tools by the NCSC does not mean the risks they were designed to detect have disappeared. In fact, they have only become more sophisticated and harder to detect than ever. This means that you will now need to switch to \*\*security and monitoring solutions that are more advanced and continuous. Instead of relying on basic monitoring tools, you will now need solutions that can keep track of your entire [internet-facing infrastructure](https://www.kroll.com/en/publications/cyber/identify-internet-facing-applications). That’s why the NCSC has encouraged users to switch to [External Attack Surface Management (EASM)](https://www.checkpoint.com/cyber-hub/cyber-security/what-is-external-attack-surface-management-easm/) platforms that scan and monitor assets like domains, **DNS records**, websites, certificates, and other services that are visible on the internet. In many ways, they combine the capabilities of both Mail Check and Web Check and take it a step further.![What is dmarc](https://media.mailhop.org/dmarcreport/images/2026/03/what-is-dmarc-3237.jpg) ## What should be the next steps? Since you will not be able to receive insights or alerts from Mail Check and Web Check from 31 March 2026, it is important that you are **well-prepared for the transition**. This is why it is recommended that you switch to tools that can monitor your domains, email authentication configuration, [DNS settings](https://epom.com/glossary/dns-settings), and website, among other digital assets. ![Dmarc record](https://media.mailhop.org/dmarcreport/images/2026/03/dmarc-record-1640.jpg) Adopting solutions such as External Attack Surface Management (EASM) tools can help \*\*maintain visibility into internet-facing assets and detect security issues early. This ensures that even after these services are retired, organizations can continue monitoring their [digital footprint](https://www.ibm.com/think/topics/digital-footprint) and address risks before they are exploited. If you are not sure how to make this switch and don’t want to lose some critical visibility into your organization’s external security posture, [get in touch with us](https://dmarcreport.com/contact/)! ## Sources - [RFC 7208 - Sender Policy Framework (SPF)](https://datatracker.ietf.org/doc/html/rfc7208) - [RFC 7489 - Domain-based Message Authentication, Reporting, and Conformance (DMARC)](https://datatracker.ietf.org/doc/html/rfc7489) ## Topics [ DMARC ](/tags/dmarc/)[ dns record ](/tags/dns-record/) ![Vasile Diaconu](https://media.mailhop.org/dmarcreport/images/team/vasile-diaconu.jpg) [ Vasile Diaconu ](/authors/vasile-diaconu/) Operations Lead Operations Lead at DuoCircle. Runs project management, developer coordination, and technical support execution for DMARC Report. [LinkedIn Profile →](https://www.linkedin.com/in/vasile-diaconu/) ## Take control of your DMARC reports Turn raw XML into actionable dashboards. Start free - no credit card required. [Start Free Trial](https://app.dmarcreport.com/) [Check Your DMARC Record](/tools/dmarc-checker/) ## Related Articles [ Foundational 12m 10 DNS Blacklist Insights That Improve Email Security And Deliverability Fast Nov 14, 2025 ](/blog/10-dns-blacklist-insights-to-improve-email-security-and-deliverability/)[ Foundational 11m 7 Easy Steps To Verify An Spf Record Using Nslookup Properly Nov 18, 2025 ](/blog/7-steps-to-verify-spf-record-correctly-using-nslookup-tool/)[ Foundational 8m A Records Vs. Alias Records - A Guide By DMARCReport Dec 4, 2025 ](/blog/a-records-vs-alias-records-a-guide-by-dmarcreport/)[ Foundational 14m Add TXT Record on Namecheap (SPF, DKIM & DMARC) - 2026 Mar 5, 2025 ](/blog/add-txt-record-on-namecheap-a-complete-dns-guide/) ```json {"@context":"https://schema.org","@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"DMARC Report","url":"https://dmarcreport.com","description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","publisher":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json [{"@context":"https://schema.org","@type":"BlogPosting","headline":"Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement","description":"Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement from DMARC Report explains practical steps for email authentication, domain.","url":"https://dmarcreport.com/blog/mail-check-web-check-retirement-ncsc-announces-end-security-tools/","datePublished":"2026-03-09T08:47:44.000Z","dateModified":"2026-04-16T15:53:43.000Z","dateCreated":"2026-03-09T08:47:44.000Z","author":{"@type":"Person","@id":"https://dmarcreport.com/authors/vasile-diaconu/#person","name":"Vasile Diaconu","url":"https://dmarcreport.com/authors/vasile-diaconu/","jobTitle":"Operations Lead","description":"Vasile Diaconu is the Operations Lead at DuoCircle, the company behind DMARC Report and AutoSPF. He coordinates between engineering, product, and technical support - running project management, interfacing with developers on customer-reported issues, and making sure work that comes in through the support channel actually gets closed out. Vasile sits at the intersection of customer feedback and engineering execution, giving him a direct view of which email authentication problems customers hit most often in production.","image":"https://media.mailhop.org/dmarcreport/images/team/vasile-diaconu.jpg","knowsAbout":["SaaS Operations","Technical Support Coordination","Customer Issue Resolution","Engineering Program Management","Deployment Operations"],"worksFor":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com"},"sameAs":["https://www.linkedin.com/in/vasile-diaconu/"]},"publisher":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://dmarcreport.com/blog/mail-check-web-check-retirement-ncsc-announces-end-security-tools/"},"articleSection":"foundational","keywords":"DMARC, dns record","wordCount":1139,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-record-6071.jpg","caption":"Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}] ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://dmarcreport.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://dmarcreport.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://dmarcreport.com/foundational/"},{"@type":"ListItem","position":4,"name":"Mail Check and Web Check to No Longer Be Available as NCSC Announces Retirement","item":"https://dmarcreport.com/blog/mail-check-web-check-retirement-ncsc-announces-end-security-tools/"}]} ```