DE-CSC

15.11.2022 15:01:43 CET | Business Wire | Press release

2022 CSC Domain Security Report Finds Nearly Three Quarters of Global 2000 Companies are at Alarmingly High Risk of Exposure to Security Threats

CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.

In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.

Additional key takeaways from CSC’s research include:

137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).

45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.

DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.

“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”

CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.

To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.

About CSC

CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/

About Business Wire

Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Yokogawa Collaborates with Shell on Robotics and AI Technology for Plant Maintenance18.6.2025 08:00:00 CEST | Press release

- Streamlining operations and reducing risk in asset integrity management – Yokogawa Electric Corporation (TOKYO: 6841) announces that it has formalized a long-term agreement with Shell Global Solutions International B.V. (“Shell”) to integrate and further develop technologies for utilizing robots and drones in plant monitoring and maintenance. Under the agreement, Yokogawa will add an advanced machine vision tool called Operator Round by Exception (ORE), developed by Shell, into its own OpreX™ Robot Management Core. The enhanced software service will be made available by Yokogawa to customers in the energy, chemicals, and other industries. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250617976629/en/ OpreX Robot Management Core ORE is a digital solution that uses machine vision and AI analytics to enable robots to autonomously perform a number of tasks in the operator round process, such as reading gauges and checking for

Ververica Announces Partnership with Aiven - Empowering Leading Enterprises to Create Value from their Data in Real-Time18.6.2025 08:00:00 CEST | Press release

Ververica, the original creators of Apache Flink® and a leader in stream processing technology, today announced a new partnership with Aiven, the AI-ready open source cloud data platform. This partnership enables Aiven to provide Ververica’s Unified Streaming Data Platform to their customers, expanding access to enterprise-grade streaming data capabilities for data-driven businesses around the world. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250617806011/en/ Ververica Announces Partnership with Aiven - Empowering Leading Enterprises to Create Value from their Data in Real-Time Under the partnership, Aiven customers can now unlock enterprise-grade stream processing with Ververica’s powerful platform — allowing them to make decisions and take actions at speed with data from any source — plus expert support from the original creators of Apache Flink. “This partnership is about removing friction and delivering real business

ICD 2025: New data demonstrate Nemluvio®’s (nemolizumab) favorable safety profile and sustained and clinically meaningful improvements in symptoms of prurigo nodularis up to two years18.6.2025 07:00:00 CEST | Press release

An interim analysis of the OLYMPIA long-term extension study to be presented as a late-breaking abstract at the XIV International Congress of Dermatology (ICD) found that Nemluvio was well tolerated and associated with sustained and clinically meaningful improvements in the key signs and symptoms of prurigo nodularis, including both skin lesions and itch, up to two years1 Results build on data from OLYMPIA – the largest completed pivotal clinical program in prurigo nodularis and the only one assessing long-term safety and efficacy in prurigo nodularis1-3 This follows the presentation of data from the ARCADIA long-term extension study at the Revolutionizing Atopic Dermatitis (RAD) Conference earlier this month, which showed Nemluvio is well tolerated with sustained and increased improvements in efficacy outcomes in atopic dermatitis patients up to two years4 Galderma (SIX: GALD) today announced data from a new interim analysis of a study investigating the long-term safety and efficacy o

LabPMM® Receives New York State Approval for the NPM1 MRD Assay - Informing Therapy and Accelerating Targeted Trials18.6.2025 06:30:00 CEST | Press release

Invivoscribe is happy to announce that its wholly owned subsidiary, the Laboratory for Personalized Molecular Medicine® (LabPMM) has received approval from New York State (NYS) for the NPM1 MRD Assay. This approval comes just two months after gaining NYS approval for our FLT3 ITD MRD Assay. Together these tests represent a critical tool for patients with acute myeloid leukemia (AML), clinicians and pharmaceutical companies. This new approval underscores Invivoscribe’s ongoing commitment to providing the most accurate, standardized measurable residual disease (MRD) testing solutions worldwide. The NPM1 MRD Assay is a pivotal development in the fight against AML, offering an ultra-sensitive DNA sequencing method to accurately measure trace levels of residual leukemia cells in patients with the NPM1 mutation variants. NPM1 mutations are considered an ideal target for MRD assessment because they are present in ~30% of adult AML cases,1 stable over time,2 and, if present in blood at allele

DNP to Take Controlling-Stake in Laxton18.6.2025 03:30:00 CEST | Press release

Maximizing synergies to accelerate the global expansion of biometric info-driven government authentication and security business Dai Nippon Printing Co., Ltd. (DNP, TOKYO: 7912) entered into a share transfer agreement on June 17, 2025 to acquire Cayman Islands-headquartered Rubicon SEZC. Rubicon (a holding company of “Laxton” group) is a global Identity Systems Integrator that provides ID solutions for governments, primarily in developing nations, to register and authenticate personal information. DNP plans to acquire 75% of Rubicon's shares in July and complete the procedures to make the company a Group company. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250613922077/en/ Products of Laxton DNP will maximize synergies with Laxton in ID cards and card printers. By expanding to government-related business in Africa, Asia, South America, and other regions, we will further grow our authentication and security business, contr

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom