DE-CSC
15.11.2022 15:01:43 CET | Business Wire | Press release
CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.
In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.
Additional key takeaways from CSC’s research include:
-
137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).
-
45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.
-
DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.
“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”
CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.
To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.
About CSC
CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Visa Opens the Door to AI-Driven Shopping for Businesses Worldwide8.4.2026 18:00:00 CEST | Press release
Part of the Visa Intelligent Commerce portfolio, Intelligent Commerce Connect will enable more ways for agents to pay and merchants to accept agentic transactions in a single integrationCurrently in pilot with select partners including Aldar, AWS, Diddo, Highnote, Mesh, Payabli, Sumvin, and rolling out to more partners this year Visa Inc. (NYSE: V) today unveiled Intelligent Commerce Connect, a new solution that makes it easier for businesses to connect to and participate in AI-powered commerce. Intelligent Commerce Connect acts as a network, protocol, and token vault-agnostic ‘on ramp’ to agentic commerce for agent builders, merchants, and enablers. As consumers increasingly rely on AI agents to make purchases, businesses – whether they are building agents, selling to them, or processing transactions – need a simple way to get started. Intelligent Commerce Connect, part of the Visa Intelligent Commerce portfolio, meets that need. Through a single integration via the Visa Acceptance Pl
Sumitomo Corporation, SMBC Aviation Capital, Apollo and Brookfield Complete the Acquisition of Air Lease Corporation8.4.2026 15:13:00 CEST | Press release
Sumitomo Corporation, SMBC Aviation Capital, Apollo-managed funds (“Apollo”) and Brookfield today announced that they have completed the previously announced acquisition of Air Lease Corporation (“Air Lease”) and have renamed the business Sumisho Air Lease Corporation (“Sumisho Air Lease”). This transformational transaction improves the financial position of the business with long term support and aviation expertise from co-investors Sumitomo Corporation, SMBC Aviation Capital, Apollo and Brookfield. Sumisho Air Lease’s strong foundation as an established aircraft lessor, supported by SMBC Aviation Capital’s industry‑leading capabilities as servicer, creates a platform with the scale and financial strength needed to meet the fast‑changing and increasingly complex requirements of airline customers. Sumisho Air Lease will also benefit from the deep expertise and long-standing commitment that both Sumitomo Corporation and SMBC Aviation Capital bring to the global aviation leasing sector.
Sitetracker Launches Scout, an Agentic AI Platform Purpose-Built for Critical Infrastructure8.4.2026 15:00:00 CEST | Press release
Sitetracker, the leading Asset Lifecycle Management platform for critical infrastructure, today announced the launch of Scout, its new Agentic AI platform designed to help infrastructure owners, operators, and contractors gain deep insights and drive automation within their operations. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260408923336/en/ Scout, ready for real work As your AI analyst and agent, Scout is ready to work on day 1. Scout provides clarity when decisions are forming and momentum when action is required. It surfaces risk, synthesizes information, and helps accelerate execution by connecting data and driving action. Scout creates operational intelligence and turns it into action all in a secure environment that protects data sovereignty. “Our customers are looking to create compounding competitive advantages,” said Giuseppe Incitti, Chief Executive Officer of Sitetracker. “Scout delivers by providing easy t
Westinghouse Hosts Annual VVER Fuel Forum with Customers8.4.2026 15:00:00 CEST | Press release
Westinghouse currently has fuel supply contracts with all the European VVER operators Westinghouse and MVM Paks Nuclear Power Plant (NPP) recently co-hosted the VVER Fuel Forum in Budapest to share insights and plans for the continued deployment of VVER-1000 and VVER-440 fuel in operating reactors. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260408646373/en/ Participants to the VVER Fuel Forum Péter János Horváth, CEO of MVM Paks, welcomed all the participants, highlighting that Hungary is ending two decades of single supplier fuel dependency thanks to the agreement recently signed with Westinghouse to supply the VVER-440 NOVA E-6 fuel design. Six customers presented the progress made and positive outcomes achieved in the past years with the introduction of Westinghouse fuel into mixed cores with resident fuel in their reactors: Energoatom has extensive experience with Westinghouse VVER-440 and VVER-1000 fuel, currently u
Virica Biotech and FUJIFILM Biosciences Collaborate Under the Canada–Japan Co‑Innovation Program to Advance AAV Production Enhancers8.4.2026 15:00:00 CEST | Press release
Efficient production of Adeno-Associated Virus (AAV) vectors at scale for in vivo gene therapies remains a key bottleneck for broad patient access and sustainable manufacturing costs.Virica and FUJIFILM Biosciences will co-develop an off-the-shelf enhancer–media solution to boost AAV yields and process robustness in FUJIFILM Biosciences BalanCD® HEK293 system. Virica Biotech (“Virica”), a cell enhancer company specializing in Viral Sensitizers (VSE™) for viral vector manufacturing, today announced it is receiving advisory services and funding from the National Research Council of Canada Industrial Research Assistance Program (NRC IRAP), under the Canada–Japan Corporate Co-Innovation Program for a collaboration with FUJIFILM Biosciences. The collaboration will focus on optimizing a VSE™ formulation for FUJIFILM Biosciences BalanCD HEK293 media to support academic and commercial AAV producers globally. AAV vectors are a cornerstone of in vivo gene delivery for gene therapies, but they re
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom