DE-CSC
15.11.2022 15:01:43 CET | Business Wire | Press release
CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.
In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.
Additional key takeaways from CSC’s research include:
-
137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).
-
45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.
-
DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.
“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”
CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.
To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.
About CSC
CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
The Jury Has Been Announced for the Third Edition of the Reply AI Film Festival, Dedicated to the Best Short Films Generated With Artificial Intelligence29.4.2026 10:00:00 CEST | Press release
Gabriele Salvatores, together with Rob Minkoff, Catherine Hardwicke, Jed Weintrob, Christina Lee Storm, Nils Hartmann, Guillem Martinez Roura, Filippo Rizzante, Giacomo Mineo, Brian Welk and Denise Negri, will judge the short films in competition based on creativity, production quality and the use of Artificial Intelligence. Reply [EXM, STAR: REY], an international group specialized in creating new business models enabled by AI and long committed to guiding younger generations in exploring emerging technologies, presents the jury of the third edition of the Reply AI Film Festival, the international competition aimed at creatives, directors, and filmmakers who want to challenge themselves in producing short films created using Artificial Intelligence tools. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260429288361/en/ “Imaginatio Nova” is the theme of the 2026 edition, an invitation to explore a new phase of imagination, wh
Bregal Milestone Announces Majority Growth Investment in CoreGo, a Leading European Open-Loop Payment and Event Technology Company29.4.2026 10:00:00 CEST | Press release
Investment follows over 98% annual growth and supports CoreGo’s continued market expansion Bregal Milestone, a leading European software growth private equity firm, today announced a majority strategic growth investment in CoreGo Oy ("CoreGo" or the "Company"), a leading provider of open-loop payments and integrated technology solutions for festivals, sports events, and venues across Europe. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260427991105/en/ Founded in Helsinki in 2015 by Hannu Elomaa and CTO Nikoteemu Väänänen, CoreGo has built one of Europe's most differentiated open-loop payment infrastructure and event technology businesses. Serving approximately 250 customers across the Nordics and DACH region, the Company delivers an integrated showtime-critical suite of solutions through CoreGo Cloud, unifying payments, access, networks, and data into a single real-time operating system. CoreGo’s in-house private network
Vonage Named a Leader in the 2026 IDC MarketScape for Worldwide Communications Engagement Platforms29.4.2026 09:30:00 CEST | Press release
Vonage, a part of Ericsson (NASDAQ: ERIC), today announced that it has been positioned in the Leaders Category in the 2026 IDC MarketScape for the Worldwide Communications Engagement Platforms (CEP) sector. Vonage believes this recognition reflects Vonage's comprehensive communications platform that enables enterprises to reimagine customer and employee engagement at global scale. The IDC MarketScape: Worldwide Communications Engagement Platforms 2026 Vendor Assessment (Doc #US53542326, April 2026) provides a comprehensive assessment of select communications engagement platform (CEP) vendors, highlighting their strengths, challenges, and strategic direction to guide technology buyers in making informed decisions. Vonage believes its placement in the Leaders Category underscores the breadth and depth of its portfolio, underpinned by advanced AI capabilities. Built with enterprise businesses and developers in mind, Vonage provides the tools and flexibility to quickly build and customize
OpenGate Capital Signs Definitive Agreement to Acquire Total Safety’s Europe and Middle East Division29.4.2026 09:00:00 CEST | Press release
OpenGate Capital (“OpenGate”), a global private equity firm, announced today that it has signed a definitive agreement to acquire the European and the Middle Eastern (“EMEA”) division of Total Safety, a Littlejohn & Co. portfolio company. Total Safety EMEA is a leading provider of mission-critical safety and compliance solutions serving petrochemical and oil & gas customers across EMEA. The company focuses on workforce protection and regulatory compliance in complex, safety critical environments. Terms of the acquisition were not disclosed. Headquartered in Diepenbeek, Belgium, Total Safety EMEA offers a fully integrated, one-stop platform spanning safety services, rental equipment and product sales. Services include the deployment of highly trained personnel for critical safety operations, short- and long-term rental of essential equipment and the supply of personal protective equipment. As a trusted partner embedded in highly regulated environments, Total Safety EMEA supports clients
AI-driven Bot Attacks Surged 12.5x According to Thales Bad Bot Report29.4.2026 09:00:00 CEST | Press release
AI-driven automation is accelerating machine activity online as bots outpace humans and redefine how the internet operates Bots now dominate the internet, accounting for over half of all traffic, with 40% classified as malicious. AI is erasing the line between legitimate and malicious activity, making intent - not identity - the new security challenge. APIs and identity systems are primary targets, with attackers bypassing front-end defenses to exploit core business logic at scale. Thales today released the 2026 Bad Bot Report: Bad Bots in the Agentic Age, revealing a fundamental shift in how the internet operates, as AI-accelerated automation becomes a defining feature of modern digital infrastructure. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260428783532/en/ ©Thales The findings highlight three major structural changes: the emergence of AI agents as a new category of internet traffic, the dominance of automated activ
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom