Skip to main content
Skip table of contents

Email domain changes

MYOB Security Operations are currently reviewing internal mail servers and improving DMARC compliance across MYOB. As part of this commitment to improved email security, they have recommended changes to the PayGlobal domains on our mail servers; we will be decommissioning some existing domains, and modifying configuration to send only from the domain.

What is DMARC and why MYOB is investing resource to fix DMARC across all domains?

Domain-based Message Authentication Reporting and Conformance (DMARC) is a free and open technical specification that is used to authenticate an email by aligning SPF and DKIM mechanisms. By having DMARC in place, we can protect our customer from phishing and spoofing emails that could be delivered using our domains.

With DMARC we can tell the world how to handle the unauthorized use of our email domains by instituting a policy (p=) in your DMARC record and thus improving security of our email domains.

More on SPF, DKIM and DMARC

Simple Mail Transfer Protocol (SMTP), a protocol used to transmit email messages, was first published in 1982 without any concern about email security. The expectation was that security would eventually be addressed by some other mechanism. SMTP traffic between email servers can now be encrypted and authenticated using the TLS protocol. Left out of the original protocol, however, was any consideration of how to authenticate email. As email continues to act as a primary vector for cybersecurity threats of all kinds, three main email authentication and validation protocols have been developed to fight the flood of spam, phishing and email spoofing:

  • Sender Policy Framework (SPF) defines a process for finding out whether a mail server is authorized to deliver email for a sending domain in DNS.

  • DomainKeys Identified Mail (DKIM) defines a process for digitally signing and authenticating email messages as coming from an email server authorized to send email for the originating domain. DKIM signatures enable email providers to authenticate on behalf of the email domain owners.

  • Domain-based Message Authentication, Reporting and Conformance (DMARC) defines a process for discovering the appropriate response to receiving an email that fails to authenticate using SPF (unauthorized email server) or DKIM (digital signature fails to authenticate).

What is changing

Starting in January, the below email domains will be decommissioned:

If customers have previously received emails from these domains, they will begin to see them instead coming from the domain. For example, the sender or will instead become

We will be making these changes ourselves over the course of January; email configuration using decommissioned domains will be updated across PayGlobal, Self Service, workflows, integrations & SSRS.

What do customers need to do?

The domain is already DMARC compliant, making it the most trusted and secure domain for sending email. Customers should already be able to successfully receive email from this domain due to this.

However, to ensure you continue to receive emails sent from our mail servers, ask your IT department to perform the following:

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.