DE-CSC
CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.
In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.
Additional key takeaways from CSC’s research include:
-
137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).
-
45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.
-
DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.
“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”
CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.
To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.
About CSC
CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Cyviz Awarded Two Classified NATO Defense Contracts19.12.2025 08:00:00 CET | Press release
Norwegian technology and platform company Cyviz AS has been awarded two classified defense contracts by major European NATO-partner nations to deliver a fully mobile, containerised Command & Control (C2) capability, strengthening Europe’s operational readiness in high-threat and expeditionary environments. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251218625485/en/ Image from a previous military exercise where Cyviz demonstrated a mobile command center solution. The contracts cover the design, integration, and delivery of secure, deployable operations centres engineered to NATO security standards, enabling military and security forces to establish full theatre-class command capability wherever operations require. Due to the sensitive nature of the missions, contract value and customer identities remain undisclosed. From Demonstrated Readiness to Operational Deployment The awards follow growing interest among European def
S3NS Announces SecNumCloud Qualification for PREMI3NS, its Trusted Cloud Offering19.12.2025 07:00:00 CET | Press release
PREMI3NS, S3NS’ (pronounced “sense”) trusted cloud offering, has now received ANSSI’s SecNumCloud qualification, meeting the most stringent protection requirements against extraterritorial laws in France and Europe The fruition of the partnership between Thales and Google Cloud enables organizations from the private and public sectors to innovate and transform with one of the broadest ranges of managed services in a trusted cloud environment Early adopters of S3NS include companies from the insurance, manufacturing, healthcare and finance industries S3NS, a subsidiary of Thales in partnership with Google Cloud, today announced that PREMI3NS, its "Trusted Cloud" (Cloud de confiance) offering, has received the SecNumCloud 3.2 qualification delivered by the French National Agency for the Security of Information Systems (ANSSI). Meeting SecNumCloud 3.2’s protection and resilience requirements, which are known as the most demanding ones in France and Europe, it offers immunity from non-Euro
Meiji Seika Pharma Partners With MBC BioLabs to Strengthen Global Innovation in Drug Discovery19.12.2025 02:00:00 CET | Press release
Meiji Seika Pharma Co., Ltd. (Headquarters: Chuo-ku, Tokyo; President & CEO: Toshiaki Nagasato) today announced that it has entered into a partnership agreement with MBC BioLabs which is a private organization supporting the development of biotech startup companies in California’s San Francisco Bay Area. MBC BioLabs provides fully equipped research facilities and a supportive community that help biotech entrepreneurs accelerate from concept to company. By removing the burden of building and maintaining laboratory infrastructure, resident companies can focus early on research and development while efficiently advancing commercialization. Through this partnership, Meiji Seika Pharma will further advance its open-innovation initiatives and strengthen research and development in its priority therapeutic areas: infectious diseases, hematologic diseases, and immune-inflammatory diseases. By engaging with the entrepreneurs and startup community at MBC BioLabs, the company aims to discover inn
Enry's Island SpA Strengthens Its Leadership in Venture Capital with Explosive Growth and Redesigns the Future of VC Through Gaming19.12.2025 00:34:00 CET | Press release
Announcement of Enry’s Island AdVentures: the world’s first video game to learn how to launch and scale startups, focused on democratizing innovation for “Long Tail Users” Enry’s Island SpA (WBAG:EIOS), the world’s first publicly listed venture builder, announces a new era of growth, innovation, and the democratization of Venture Capital (VC). The company has delivered exceptional results, consolidating its position as an industry leader through a strategic positioning in the rapidly expanding gaming market. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251218742236/en/ Record Growth and Performance Enry’s Island SpA has demonstrated an extraordinary growth trajectory and a strong financial and operational track record: Revenues: +250% year-over-year (YoY). Exit: $3.6M in exits realized via IPO. Portfolio: 1 IPO of a portfolio company completed in December 2024, with an additional 2 IPOs expected in 2026. The performance of
500 Global Expands Africa Presence; Selected to Advance Digital Morocco 2030 Strategy18.12.2025 21:37:00 CET | Press release
Part of the Digital Morocco 2030 strategy, 500 Global has been selected to support the Startup Venture Building (Startup VB) initiative. 500 Global, one of the world’s most active venture capital firms1, announced it has been selected to support the Ministry-led Startup VB initiative, a flagship program under the Digital Morocco 2030 strategy2. This announcement marks a significant milestone in 500 Global’s continued expansion across the African continent and its work collaborating with governments to strengthen national innovation ecosystems. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251218363323/en/ Announcement of 500 Global's continued expansion across Africa and support of Digital Morocco 2030 Launched by the Ministry of Digital Transition and Administrative Reform (Ministry) and deployed by TAMWILCOM, the Startup VB initiative is a flagship program under the Digital Morocco 2030 strategy. Startup VB aims to streng
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom