Brighton Top 10 Restaurants – Email Security Scores
February 25, 2025
Assessing Email and Domain Security For The Brighton Top 10 Restaurants
Brighton, often called “London by the Sea,” is known for its vibrant culture, iconic seafront, and thriving nightlife. Its diverse restaurant scene is no exception, boasting some of the UK’s best dining experiences, from independent eateries to high-end cuisine.
As part of our Brighton Top 10 – Cyber domain and email security investigation, we analysed the top 10 local restaurants (per Tripadvisor) to assess their email and domain security against phishing and spoofing threats.
Domain-based Message Authentication, Reporting & Conformance (DMARC) is an email authentication protocol that builds upon existing SPF and DKIM standards. It enables domain owners to specify their email authentication practices and instructs receiving servers on how to handle messages that fail verification, thereby reducing phishing risks.
Our evaluation highlights potential gaps in the Brighton top 10 restaurants that could leave customers vulnerable to phishing attacks and identity theft.

The risk levels by which we ranked each restaurant’s domain:
High Risk Level (0-32%)
A high-risk domain has severe vulnerabilities in SPF, DKIM, and DMARC, making it highly susceptible to email impersonation and phishing attacks. Immediate corrective action is essential to improve security.
Medium Risk Level (33-66%)
Domains in this category exhibit significant SPF, DKIM, and DMARC issues, increasing the risk of email spoofing. Timely resolution is strongly recommended to improve overall email protection and domain integrity.
Low Risk Level (67-100%)
Domains at this level have minimal security risks, with little to no authentication issues, providing strong protection against email threats. Regular monitoring is still recommended to mitigate emerging risks.
Domain Scores of Brighton’s Top 10 Restaurants

Baqueano
Photograph: Google Street View
1. Baqueano
125 Western Rd, Brighton and Hove, BN1 2AD
baqueano.co.uk
Baqueano is currently ranked number 1 in Tripadvisors list of the Brighton top 10 restaurants. Renowned for serving the best steak in town with authentic Argentinian flavors.
- SPF: The SPF record is well configured.
- DMARC: The DMARC policy is set to ‘none’, which offers no protection and could allow fake emails to be delivered.
- DKIM: There is no DKIM record, so email servers are more likely to flag their emails as spam, as the lack of authentication reduces the ability to verify the email’s authenticity.



%
DOMAIN SECURITY SCORE

Etci Kitchen
Photograph: Google Street View
2. Etci Kitchen
47 Preston St, Brighton and Hove, BN1 2HP
etcikitchen.com
At number 2 on the Brighton top 10 restaurants list, Etci Kitchen is a restaurant known for its vibrant atmosphere and high-quality Turkish cuisine.
- SPF: The SPF record appears to be misconfigured due to a permissive mechanism (‘+all’ or ‘?all’) present in an ‘include SPF record’ in their configuration. This poses both security and deliverability risks.
- DMARC: The domain has no DMARC policy, making it vulnerable to email spoofing. Implementing a strong DMARC policy would help block or filter malicious emails.
- DKIM: The DKIM is solid indicating proper cryptographic authentication for outgoing emails.



%
DOMAIN SECURITY SCORE

Burnt Orange
Photograph: Google Street View
3. Burnt Orange
59 Middle St, Brighton and Hove, BN1 1AL
burnt-orange.co.uk
Number 3 in the Brighton top 10 restaurants list, known for its relaxed atmosphere and high-quality cuisine.
- SPF: The SPF record uses ‘-all’, which may cause issues with email deliverability.
- DMARC: No DMARC record was found, leaving the domain vulnerable to spoofing and phishing attacks. Implementing a strong DMARC policy would help block or filter fake emails.
- DKIM: Strengthening DKIM authentication would enhance email security and help prevent spoofing.



%
DOMAIN SECURITY SCORE

Jamun
Photograph: Google Street View
4. Jamun
14 West St, Brighton and Hove, BN1 2RE jamunrestaurant.co.uk
Jamun is a popular Indian restaurant in Brighton known for its authentic cuisine and welcoming atmosphere, placing it at number 4 in the Brighton top 10 restaurants list.
- SPF: Their SPF record is well configured.
- DMARC: No DMARC record was found, leaving the domain vulnerable to potential spoofing and phishing attacks. Implementing a strong DMARC policy would help block or filter fake emails.
- DKIM: Strengthening DKIM authentication would enhance email security and help prevent spoofing.



%
DOMAIN SECURITY SCORE

Kindling
Photograph: Kindling
5. Kindling
69 East St, Brighton and Hove, BN1 1HQ kindlingrestaurant.com
Kindling placed at number 5 in the Brighton top 10 restaurants list known for its seasonal, locally sourced ingredients and open-fire cooking.
- SPF: No SPF record was found for the root domain. Implementing an SPF record is essential to prevent unauthorised email spoofing.
- DMARC: No DMARC record was found, leaving the domain vulnerable to phishing attacks. Implementing a strong DMARC policy would help block or filter fake emails.
- DKIM: No DKIM record was found. Implementing DKIM will add cryptographic authentication to outgoing emails, enhancing security.



%
DOMAIN SECURITY SCORE

The Coal Shed
Photograph: Josie Lister
6. The Coal Shed
Clarence House, 30-31 North St, Brighton and Hove, BN1 1EB coalshed-restaurant.co.uk
The Coal Shed takes the number 6 spot in the Brighton top 10 restaurants list, famous for its high-quality steaks and seafood, cooked over an open flame.
- SPF: The SPF record uses ‘-all’, which may cause issues with email deliverability. Reviewing and adjusting it can help ensure legitimate emails are not blocked.
- DMARC: No DMARC record was found, leaving the domain vulnerable to phishing attacks.
- DKIM: DKIM records may need updating due to a potential issue.



%
DOMAIN SECURITY SCORE

The Salt Room
Photograph: Google Street View
7. The Salt Room
106 Kings Rd, Brighton and Hove, BN1 2FU saltroom-restaurant.co.uk
The Salt Room is a popular seafood restaurant placed in the seventh spot in the Brighton top 10 restaurants list, known for its fresh, locally sourced dishes and stunning views of the seafront.
- SPF: The SPF record uses ‘-all’, which may cause issues with email deliverability. Reviewing and adjusting it can help ensure legitimate emails are not blocked.
- DMARC: No DMARC record was found, leaving the domain vulnerable to phishing attacks.
- DKIM: DKIM records need updating due to an issue.



%
DOMAIN SECURITY SCORE

Embers
Photograph: Google Street View
8. Embers
42 Meeting House Ln, Brighton and Hove, BN1 1HB embersbrighton.co.uk
Embers is a vibrant restaurant in eigth position in the Brighton top 10 restaurant list, renowned for its wood-fired dishes and seasonal menu, offering a unique dining experience.
- SPF: The SPF record uses ‘-all’, which may cause issues with email deliverability. Reviewing and adjusting it can help ensure legitimate emails are not blocked.
- DMARC: No DMARC record was found, leaving the domain vulnerable to phishing and spoofing.
- DKIM: No DKIM record was found. Adding a DKIM record will provide cryptographic authentication to secure outgoing emails.



%
DOMAIN SECURITY SCORE

Permit Room
Photograph: Josie Lister
9. Permit Room
32 East St, Brighton and Hove, BN1 1HL permitroom.co.uk
Permit Room, inspired by Dishoom, is at number 9 in the Brighton top 10 restaurants list, offering a tribute to the permit rooms of Bombay with a menu of curries, bar snacks, and a selection of Dishoom favourites.
SPF: Their SPF record is well configured.
DMARC: No DMARC record was found, leaving the domain vulnerable to phishing and spoofing.
DKIM: No DKIM record was found. Adding a DKIM record will provide cryptographic authentication and enhance the security of outgoing emails.



%
DOMAIN SECURITY SCORE

Halisco
Photograph: Google Street View
10. Halisco
64 Preston St, Brighton and Hove, BN1 2HE halisco-brighton.co.uk
Halisco is a vibrant Mexican restaurant placing in tenth place in the Brighton top 10 restaurant list, known for its delicious tacos, tequila cocktails, and lively atmosphere.
- SPF: No SPF record was found for the root domain. Implementing an SPF record is essential to prevent unauthorised email spoofing and improve email deliverability.
- DMARC: No DMARC record was found, leaving the domain vulnerable to phishing and spoofing. Adding a strong DMARC policy will help protect against malicious emails.
- DKIM: No DKIM record was found. Adding a DKIM record will provide cryptographic authentication to secure outgoing emails.



%
DOMAIN SECURITY SCORE

The Growing Cyber Threat to Restaurants
The increasing reliance on digital communication for reservations, promotions, and customer engagement has given cybercriminals new opportunities to exploit vulnerabilities in email security. The Brighton top 10 restaurants, will pride themselves on delivering exceptional dining experiences, but may unknowingly not be paying enough attention to their cybersecurity defences, potentially exposing their customers as well as facing email deliverability issues.
Despite the availability and effectiveness of SPF, DMARC and DKIM policies, many organisations, including major restaurant chains, have failed to implement them. By not enforcing these policies, businesses are making it easier for cybercriminals to deceive customers into revealing personal information or downloading malware.
Experts recommend that consumers be vigilant when receiving emails from restaurants. To minimize risk:
- Avoid clicking on links in unsolicited emails.
- Verify offers and promotions by visiting the restaurant’s official website directly.
- Be cautious when providing personal information via email.
- Report suspicious emails to the establishment and relevant authorities.
Email Deliverability – Booking Confirmations
Not recieved a booking confirmation or email you were expecting? Are you using Gmail, Yahoo or iCloud for your email?
Google and Yahoo announced that in February 2024, they would start enforcing email authentication. The largest changes were to ‘bulk senders’, i.e. those sending more than 5000 messages a day, but we’ve seen deliverability issues with businesses of all sizes.
If you have a Gmail, yahoo or iCloud email address and aren’t receiving the emails you were expecting, it’s most likely due to an issue with the sender’s SPF, DMARC or DKIM settings.

Get Expert Support for Domain Security:
While the Brighton top 10 restaurants excels at providing exceptional food and service, cybersecurity won’t be on the menu.
At Black Sheep Support, it’s prominently placed on our specials board, so if you need assistance implementing SPF, DMARC or DKIM or require IT support to safeguard your business against cyber threats, we are here to help and aim to improve Brighton’s Cyber Security.
Book a discovery call today to learn how we can help your business!
