DE-CSC

15.11.2022 15:01:43 CET | Business Wire | Press release

2022 CSC Domain Security Report Finds Nearly Three Quarters of Global 2000 Companies are at Alarmingly High Risk of Exposure to Security Threats

CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.

In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.

Additional key takeaways from CSC’s research include:

137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).

45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.

DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.

“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”

CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.

To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.

About CSC

CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/

About Business Wire

Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Nakiki SE: Nakiki SE Evaluates Corporate Bond Offering for Strategic Bitcoin Investment27.8.2025 18:51:00 CEST | Press release

Nakiki SE is currently evaluating the issuance of a corporate bond with a target volume in the mid–single-digit million-euro range. As part of a pre-market sounding process, the Management Board is assessing interest from professional investors. The proceeds of the issuance are intended primarily for the acquisition of Bitcoin. Language: English Company: Nakiki SE Hanauer Landstr. 204 60314 Frankfurt on the Main Germany E-mail: info@nakikifinance.com Internet: https://nakikifinance.com/ ISIN: DE000WNDL300, DE000WNDL318 WKN: WNDL30, WNDL31 Listed: Regulated Market in Frankfurt (General Standard); Regulated Unofficial Market in Berlin, Dusseldorf, Hamburg, Hanover, Munich, Stuttgart, Tradegate Exchange View source version on businesswire.com: https://www.businesswire.com/news/home/20250827593566/en/

Boomi Named a Leader and Secures Top Score in Strategy Category in Latest iPaaS Report by Independent Research Firm27.8.2025 17:30:00 CEST | Press release

AI-driven automation leader receives the highest scores possible in ten criteria Boomi™, the leader in AI-driven automation, today announced it has been named a Leader in The Forrester Wave™: Integration Platform As A Service, Q3 2025. The report evaluated the 10 most significant iPaaS vendors, and Boomi achieved the highest score in thestrategy category among all evaluated providers. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250826324359/en/ Boomi Named a Leader and Secures Top Score in Strategy Category in Latest iPaaS Report by Independent Research Firm The report states that Boomi has reoriented with an “intense focus on AI and APIs,” “receives strong feedback from its partners,” and maintains “clear investment priorities.” Reference customers were impressed by the company’s level of investment in the product and its vision for the future, and look forward to seeing Boomi deliver on its AI roadmap. “We’re honored to

Altasciences and Evidence Matters Announce Strategic Collaboration to Advance AI-Enhanced Text Engineering for Regulatory Writing in Life Sciences27.8.2025 16:00:00 CEST | Press release

Altasciences, a fully integrated CRO/CDMO offering comprehensive early-phase drug development solutions, is pleased to announce a strategic collaboration with Evidence Matters, a pioneer in clinical trial data science and document engineering. This partnership combines Altasciences' real-world drug development expertise with Evidence Matters' innovative, patent-pending Text Engineering technology—a breakthrough that delivers near-deterministic accuracy in regulatory writing by reducing variability and improving the quality, consistency, and speed of documentation. Evidence Matters’ RegulatoryFlow platform (“RegFlow”) and specialized services unify clinical data and documents, simplify workflows, and accelerate the work of key life sciences professionals, from medical writers to regulatory specialists. “We are excited to work alongside Evidence Matters to co-develop technology that directly enhances the quality and efficiency of regulatory writing,” said Nicole Maciolek, Vice President,

Veridas Named a Visionary in the 2025 Gartner® Magic Quadrant™ for Identity Verification27.8.2025 14:34:00 CEST | Press release

Recognised in Gartner research as a leading global IDV vendor, with a fully proprietary stack, certified accessibility, and a vision for reusable, user-centric digital identity. Veridas, a global identity company, has been recognized as a Visionary in the 2025 Gartner® Magic Quadrant™ for Identity Verification, reinforcing its position among the top global IDV vendors. Founded in 2017 and operating globally, Veridas enters the report as one of the fastest-growing companies in the market. Gartner defines Visionaries as vendors that understand where the market is going or have a vision for changing market rules. This positioning validates Veridas’ long-term strategy and highlights its leadership in innovation, ethical design, and user-centric digital identity. At the core of Veridas’ approach is its 100% proprietary technology stack, covering facial biometrics, voice authentication, document verification, age validation, physical access control, and its ID Wallet. By developing all core

Boyd Launches Rack Emulator to Validate Liquid Cooling System Performance for AI Infrastructure27.8.2025 14:05:00 CEST | Press release

Boyd Enables Faster Testing and Validation of Direct-to-Chip Liquid Cooling Loops, Coolant Distribution Units, and Facility Cooling Systems with Boyd’s Rack Emulator Boyd, whose chip-to-ambient liquid cooling technologies make it easier for data center owners and operators to implement new AI infrastructure, announced it launched a new thermal testing tool to help end clients more safely and efficiently deploy liquid cooled data centers and improve time to market. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250827491684/en/ Boyd's new Rack Emulator validates liquid cooling system performance in AI data centers, helping clients more safely and efficiently deploy liquid cooled data centers with improved speed of deployment. Boyd's Rack Emulator simulates the pressure drop and heat dissipation of a rack and uses automation to test coolant distribution units (CDUs) and facility cooling systems to validate thermal performance

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom