DE-CSC

15.11.2022 15:01:43 CET | Business Wire | Press release

2022 CSC Domain Security Report Finds Nearly Three Quarters of Global 2000 Companies are at Alarmingly High Risk of Exposure to Security Threats

CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.

In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.

Additional key takeaways from CSC’s research include:

137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).

45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.

DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.

“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”

CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.

To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.

About CSC

CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/

About Business Wire

Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Xsolla Integrates SPENN in Rwanda and Zambia Giving Developers Access to a Strong Consumer-Merchant Ecosystem16.12.2025 16:49:00 CET | Press release

Developers Can Now Maximize Revenue and Boost Player Engagement with a New Integration Delivering a Smoother Checkout, Fewer Declines, and Access to a Growing Digital Wallet User Base Xsolla, a global video game commerce company that helps developers launch, grow, and monetize their games, today announced that it has added SPENN to its payments solution portfolio in Rwanda and Zambia. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251216303338/en/ Xsolla Integrates SPENN In Rwanda And Zambia Giving Developers Access To A Strong Consumer-Merchant Ecosystem Both Rwanda and Zambia are mobile-first, wallet-led economies where mobile money drives financial inclusion and rapid growth in digital transactions. Reports found that approximately 86% of Rwandan adults own or have used mobile money. As of mid-2024, mobile money transaction volumes in Zambia increased by 44% to 1.4 billion transactions from mid-2023. By adding SPENN as a

New Survey of Nearly 4,300 C-suite Leaders Reveals Intensifying Demand for Faster Innovation, Higher ROI and Stronger Business Resilience16.12.2025 15:00:00 CET | Press release

Executives face growing pressure to deliver AI-driven transformation while navigating rising costs, increasing risk and shortages in skilled IT talent Rimini Street, Inc. (Nasdaq: RMNI), a global provider of end-to-end enterprise software support, managed services and Agentic AI ERP innovation solutions, and the leading third-party support provider for Oracle, SAP and VMware software, today announced the findings of its new global survey, “C-suite Imperatives: Accelerating Innovation in a Shifting Landscape.” The research was conducted in partnership with Censuswide surveying nearly 4,300 CFOs, CIOs, CEOs and CISOs across the globe, examining the pressures influencing executive-level technology decisions and the priorities shaping their investment strategies. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251216456670/en/ New Survey of Nearly 4,300 C-suite Leaders Reveals Intensifying Demand for Faster Innovation, Higher ROI

Enersense Selects Sitetracker as the Platform of Choice for 5G and Fiber Expansion Initiatives16.12.2025 15:00:00 CET | Press release

Sitetracker, the global leader in complete Asset Lifecycle Management, announced that Enersense, a leading lifecycle partner for customers operating in energy transmission and production, industrial energy transition and telecommunications services across Finland and the Baltics, has selected Sitetracker to digitize and scale its operations. The implementation enabled Enersense to replace legacy systems, standardize workflows, and support their ability to deliver services with short lead times and high process precision. The first phase of implementation is already supporting Finland’s 5G and rapidly expanding fiber-to-the-home (FTTH) initiatives. Before Sitetracker, Enersense relied on spreadsheets and email to manage project execution, resulting in limited visibility into project milestones, asset tracking, and field performance. As 5G and FTTH deployment accelerated, these manual processes created operational bottlenecks, slowed invoicing, and hindered communication with customers a

Sutherland and ComplyAdvantage Launch AI-Native "Unified FinCrime Compliance" Solution to Combat Sophisticated, Next Generation Financial Crime16.12.2025 15:00:00 CET | Press release

New partnership merges Sutherland’s AI-native FinCrime expertise with ComplyAdvantage’s Mesh Risk Intelligence to deliver an integrated, modular AI-powered ecosystem for Fraud, AML, Risk and Transaction Monitoring. Sutherland, a global leader in business and digital transformation, today announced a strategic partnership with ComplyAdvantage, a leading AI-driven risk intelligence platform. The collaboration introduces a comprehensive, AI-driven financial crime (FinCrime) management solution designed to help banks and Fintechs respond to the rapid rise of AI-designed fraud, complex AML risks, fast-evolving financial crime threats, and complex compliance requirements. Today, financial crime requires sophisticated, AI-intelligence-based solutions, as traditional risk and compliance controls cannot keep up. The Sutherland-ComplyAdvantage solution transforms FinCrime management by delivering a single AI-native intelligence layer that continuously enhances screening, transaction monitoring,

Mastering Complexity & Increasing Efficiency: CES 2026: dSPACE Demonstrates Test and AI Solutions for SDV Development16.12.2025 14:02:00 CET | Press release

At CES 2026, dSPACE will showcase end-to-end test solutions that enable vehicle manufacturers to efficiently master the increasing complexity in the development of software-defined vehicles. At booth 4500 in West Hall, dSPACE will present a comprehensive validation portfolio with AI-supported software-in-the-loop and hardware-in-the-loop solutions for accelerated vehicle development. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251216117958/en/ At CES 2026, dSPACE will present a comprehensive validation portfolio with AI-supported software-in-the-loop and hardware-in-the-loop solutions for accelerated SDV development. AI is a strategic enabler throughout the entire development and test process. dSPACE has been exploring how the latest developments in generative and agentic AI technologies can support software-in-the-loop (SIL) testing and enable CI/CD pipelines for automated validation. In an exhibit, dSPACE will demonstra

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom