DE-CSC

15.11.2022 15:01:43 CET | Business Wire | Press release

2022 CSC Domain Security Report Finds Nearly Three Quarters of Global 2000 Companies are at Alarmingly High Risk of Exposure to Security Threats

CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.

In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.

Additional key takeaways from CSC’s research include:

137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).

45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.

DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.

“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”

CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.

To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.

About CSC

CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/

About Business Wire

Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Galderma Announces First Patient Enrollment in Study to Assess Nemolizumab in Adults With Chronic Pruritus of Unknown Origin11.12.2025 07:00:00 CET | Press release

Chronic Pruritus of Unknown Origin (CPUO) is characterized by a persistent, chronic itch with an unknown cause and is associated with very high burden of disease due to severe itch, sleep deprivation and mental distress1 Galderma’s phase II study builds on emerging research that reinforces the role of IL-31 – a neuroimmune cytokine that is involved in driving itch – in CPUO1 Nemolizumab is a monoclonal antibody that specifically targets the IL-31 receptor alpha, inhibiting the signaling of IL-312 It is approved by multiple regulatory authorities for the treatment of moderate-to-severe atopic dermatitis and prurigo nodularis – conditions in which IL-31 plays a key role in driving itch, inflammation, epidermal dysregulation, and, in prurigo nodularis, fibrosis2-6 Galderma (SIX: GALD), the pure-play dermatology category leader, today announced the first patient enrollment for its phase II study investigating the efficacy and safety of nemolizumab in treating patients living with Chronic P

Ant International and HSBC Test New Cross-Border Payments Solution Using Tokenised Deposits on Swift’s Network and Powered by ISO 2002211.12.2025 04:00:00 CET | Press release

ISO 20022-enabled solution allows blockchain interoperability on Swift’s network, using Ant International’s technology and HSBC’s Tokenised Deposit Service Integration with Swift’s network extends AML and anti-fraud capabilities to tokenised deposits transactions Proof of concept (POC) marks a step towards enabling seamless money movement across borders Ant International, HSBC and Swift today have completed a successful Proof of Concept (POC) for the cross-border transfer of tokenised deposits using ISO 20022 standards. The initiative leverages Swift’s global messaging network and HSBC’s recently launched Tokenised Deposit Service, combined with Ant International’s blockchain technology. The POC marks a key milestone in Ant International, HSBC, and Swift’s efforts to help businesses unlock the full benefits of tokenisation for enhanced liquidity, programmable finance, and 24/7 real-time settlement. As part of this initiative, Ant International and HSBC successfully integrated Ant Inter

Andersen Consulting styrker sit udbud af cybersikkerhed med tilføjelsen af S-RM11.12.2025 00:05:00 CET | Pressemeddelelse

Andersen Consulting indgår en samarbejdsaftale med S‑RM, en global efterretnings- og cybersikkerhedsvirksomhed, og styrker dermed sin evne til at understøtte globale kunder med risikostyring, hændelsesrespons og strategisk rådgivning. S-RM har hovedsæde i Storbritannien og leverer integrerede ydelser, der spænder over cyberrådgivning, digital efterforskning, hændelseshåndtering, virksomhedsefterretning og due diligence i forbindelse med transaktioner. Firmaet betjener family offices, kapitalfonde, Fortune 500-virksomheder og mellemstore virksomheder inden for bl.a. finans-, olie- og sundhedssektoren, og tilbyder praktisk cybersikkerhedsstyring samt tilpassede risikoplatforme. Med døgnåben hændelseshåndtering og dybdegående efterforskningsekspertise hjælper S-RM organisationer med at styrke deres modstandsdygtighed og træffe informerede beslutninger i komplekse miljøer. "I en tid, hvor trusler konstant udvikler sig, skal organisationer være proaktive, ikke reaktive," udtaler Heyrick Bon

Canva Unveils 2026 Design Trends: The Year of ‘Imperfect by Design’10.12.2025 23:52:00 CET | Press release

Canva’s third annual Design Trends Report uncovers insights from millions of Canva users and billions of designs to predict the must-know visual trends for creators and brands in 2026.90% surge in DIY-inspired searches, reflecting a shift toward raw, personal, and imperfect design.85% increase in searches for Zine and Substack inspired layouts as creators gravitate toward editorial style storytelling.80% of creators say 2026 is the year to regain creative control, embracing AI as a partner while prioritizing styles that feel human.54% growth in searches for clean layouts and simple branding as audiences gravitate toward pared back styles.527% surge in lo-fi aesthetic searches in favor of nostalgia driven, emotionally expressive visuals.220% jump in searches for “liminal” and “uncanny” content as lines between real and surreal blur. Canva, the world’s leading all-in-one visual communication platform, today unveiled its third annual Design Trends Report with bold predictions for creativi

Audiencerate Achieves Google Customer Match Partner Status, strengthening its role as a Global Data Provider10.12.2025 22:40:00 CET | Press release

Audiencerate, an international technology company specializing in data activation solutions and platforms within the AdTech and MarTech sectors, has been officially awarded by Google as a Customer Match Upload Partner. This certification is granted to a restricted number of global operators (https://support.google.com/google-ads/answer/7361372?hl=en) authorized to manage and onboard first-party data into the Google Ads and DV360 ecosystem. The company strengthen its strategic partnership with Google by adding the Customer Match Upload Partner accreditation to its existing status as a certified Google Data Provider. This new credential enables Audiencerate to seamlessly integrate proprietary audience segments and data into Google’s advertising platforms. The combination of these two accreditations represents an exceptionalsituation in the international landscape and solidifies Audiencerate's position in the digital advertising market, which is increasingly reliant on first-party data. T

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom