Paul O'Brien

Apple excels at shaping user experiences — but email remains the one part of its ecosystem that feels merely functional, not thoughtfully reimagined.

Yahoo Mail didn’t disappear overnight. It faded from relevance as trust eroded, decisions stalled, and breaches exposed deeper problems. This is the story of how the internet’s most trusted brand lost its place at the centre of email.

Gmail didn’t become the world’s default inbox by accident. This piece explores how scale, design, and ecosystem beat privacy-first ideals.

Fastmail in 2026 is a paid, standards-first email service built for portability, reliability, and long-term control — not encryption maximalism or platform lock-in.

Tuta Mail (formerly Tutanota) remains one of the most privacy-focused email services in 2026, prioritising maximum encryption and reduced metadata exposure over convenience. This review explains the trade-offs, who it suits, and when Proton or StartMail may be a better fit.

DMARC defines what happens when email authentication fails, turning SPF and DKIM results into clear policy decisions that protect domains from spoofing and abuse.

DKIM (DomainKeys Identified Mail) doesn’t verify who sent an email. It verifies that the message hasn’t been altered since it was signed, and that a domain takes responsibility for its contents. Understanding DKIM means understanding what it proves — and what it deliberately ignores.

SPF doesn’t verify who sent an email — it only confirms that a server was allowed to deliver it. That distinction explains why SPF passes during phishing, fails during forwarding, and can’t be treated as a trust signal on its own.