DE-CSC

15.11.2022 15:01:43 CET | Business Wire | Press release

2022 CSC Domain Security Report Finds Nearly Three Quarters of Global 2000 Companies are at Alarmingly High Risk of Exposure to Security Threats

CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.

In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.

Additional key takeaways from CSC’s research include:

137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).

45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.

DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.

“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”

CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.

To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.

About CSC

CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/

About Business Wire

Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

1NCE Continues Growth and Expands Its Software, AI and Services Offering7.1.2026 14:15:00 CET | Press release

In 2025 1NCE added another 10 million endpoints to its foundational IoT platform; now manages 40+ million intelligent products for 30,000 customers in 17 industries. Introduces new software, 1NCE Insights, the AI + IoT fusion of intelligence from its network that gives analytics and benchmark data on how customers can better setup, manage and optimize their device estates. 1NCE, a company offering a plug-and-play platform for creating and managing the world’s best IoT products, reports another strong growth year, adding another 10 million endpoints. The company now manages 40+ million intelligent products for 30,000+ customers across 17 industries. 1NCE’s software and connectivity platform has become a new industry standard, delivering hassle-free IoT in 170+ countries and regions. The company has a unique vantage point in the IoT ecosystem, with four billion data records per day collected through 250+ streams on the world’s largest IoT network in the cloud. The company launched a new

Prudentia Sciences Announces Series A Led by McKesson Ventures, Accelerating Due Diligence for Life Sciences Dealmaking7.1.2026 14:00:00 CET | Press release

Prudentia Sciences, a pioneer in AI-native due diligence for life sciences dealmaking, today announced that it has secured $20 million in Series A financing. The round was led by McKesson Ventures with participation from SignalFire. Existing investors include Iaso Ventures, Virtue and GV. This brings the company’s total funding to $27 million, following a $7 million seed round in 2024. Prudentia Sciences provides an AI-native platform that enables pharma companies, biotechs, and financial institutions to evaluate breakthrough medicines with unprecedented speed and rigor. By synthesizing complex clinical signals into actionable insights, Prudentia accelerates deal throughput and provides strategic leverage for acquisition, licensing, or investment decisions made by business development, investment, and diligence teams. The company’s human-in-the-loop approach orchestrates seamless collaboration between buyers, sellers, and intermediaries. This ensures a secure, compliant infrastructure

Compass Pathways Announces FDA Acceptance of IND Application for PTSD and Hosts Webinar on PTSD and TRD7.1.2026 12:30:00 CET | Press release

FDA Accepts Investigational New Drug (IND) Application for COMP360 for the treatment of post-traumatic stress disorder (PTSD), enabling initiation of late-stage trialCompass continues to advance commercial preparations to be launch-ready by the end of the year for COMP360 for treatment-resistant depression (TRD)Management will host webinar with KOL and industry leaders to discuss PTSD clinical trial and commercial preparations for TRD from 10:00-11:30 am ET on January 7th Compass Pathways plc (Nasdaq: CMPS), a biotechnology company dedicated to accelerating patient access to evidence-based innovation, today announced that the U.S. Food and Drug Administration (FDA) has accepted its Investigational New Drug (IND) application for COMP360, enabling the initiation of a late-stage clinical trial in patients with PTSD. Compass management, along with KOL and industry leaders, will host a webinar today to discuss the company’s clinical trial plans for PTSD, as well as commercial preparations f

Stallergenes Greer Expands Venom Immunotherapy Production Capacity With Acquisition of Entomon s.r.l.7.1.2026 11:07:00 CET | Press release

Stallergenes Greer, a global leader in allergy therapeutics, today announced that it has entered into an agreement to acquire Entomon s.r.l., an Italian company specialising in the production of certified stinging-insect venom extracts, notably of the Hymenoptera order, used for the manufacture of diagnostic preparations and Venom Immunotherapy (VIT). The transaction is expected to close by the end of January. Entomon, currently recognised as the only company in Europe capable of extracting pure venom from Hymenoptera insects, produces pharmaceutical-grade insect venom using proprietary techniques (Entomon Capillary Extracted Venom®) for medical use. Through this acquisition, Stallergenes Greer bolsters its venom manufacturing capabilities and supply of raw materials for life-saving VIT treatments, whilst safeguarding patient care continuity. Hymenoptera venom allergy is the most common trigger of severe anaphylaxis in adults1. According to the EAACI guidelines on venom immunotherapy,

ARIS Announces New CEO to Lead Agentic AI-led Strategy7.1.2026 10:00:00 CET | Press release

CEO Appointment ARIS, a global leader in process intelligence and transformation software, today announced the appointment of Guillaume Bacuvier as Chief Executive Officer. Guillaume will lead ARIS through its next phase of growth as a fully standalone company, accelerating its evolution from a market leader in Process Intelligence into a foundational platform for enterprises deploying and governing Agentic AI. Guillaume brings deep international leadership experience across technology, data, and software-enabled businesses, with a proven track record of scaling global platforms and leading complex organisations. After starting as a strategic consultant at Booz Allen Hamilton, Guillaume spent over a decade at Google, rising to Vice President in EMEA where he built and scaled some of Google’s largest data-driven businesses in Europe and held P&L responsibility across multiple countries. In the last decade, Guillaume has served as CEO of multi-continent, data-centric companies including

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom