Business Wire

DE-CSC

15.11.2022 15:01:43 CET | Business Wire | Press release

Share
2022 CSC Domain Security Report Finds Nearly Three Quarters of Global 2000 Companies are at Alarmingly High Risk of Exposure to Security Threats

CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.

In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.

Additional key takeaways from CSC’s research include:

  • 137 companies (6.8%) had a domain security score of “0”
    Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).
  • 45% of companies that use enterprise-class domain registrars also deploy registry lock
    Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.
  • DMARC is the only domain security measure with significantly increased adoption this year
    Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.

“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”

CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.

To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.

About CSC

CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/

About Business Wire

Business Wire
Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com
DK

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Textron Aviation Broadens Aftermarket Connectivity Solutions for Cessna Citation Latitude by Offering Starlink High-Speed Internet18.9.2025 15:30:00 CEST | Press release

Textron Aviation Inc., a Textron Inc. (NYSE: TXT) company, today announced an additional high-speed internet connectivity solution for the Cessna Citation Latitude following the Federal Aviation Administration’s (FAA) issuance of AeroMech’s Supplemental Type Certificate (STC) for Starlink high-speed internet connectivity. AeroMech’s STC utilizes Starlink’s constellation of Low Earth Orbit (LEO) satellites to provide more reliable connectivity over land, water and remote areas, where traditional in-flight Wi-Fi may not have service. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250918380069/en/ Textron Aviation broadens aftermarket connectivity solutions for Cessna Citation Latitude by offering Starlink high-speed internet (Photo Credit: Textron Aviation) “With Starlink connectivity now available as an upgrade, Citation Latitude customers can enjoy a seamless, high-speed in-flight experience that keeps them connected in more

Lenovo Finds 65% of IT Leaders Admit Their Defenses Can’t Withstand AI Cybercrime18.9.2025 15:00:00 CEST | Press release

New Lenovo Research Shows How AI-Powered Defenses Help Enterprises Turn Cyber Risk into Cyber Resilience Lenovo research reveals a widening security gap as AI-driven cybercrime surges: 65% of IT leaders surveyed admit their defenses are outdated and unable to withstand AI-enabled attacks, and just 31% feel confident defending against them. The new insights are drawn from Lenovo’s third Work Reborn report, Reinforcing the Modern Workplace. While AI is driving business improvements and efficiency gains, it is also fueling a new wave of cybercrime that most businesses are ill-equipped to defend against. This underscores the critical need for enterprises to adopt AI-driven strategies that can counter threats that learn, adapt, and evolve in real time. Lenovo is positioned to deliver this shift with end-to-end solutions that embed AI security into the digital workplace. With operations in 180 markets and a leader in enterprise technology, Lenovo brings unmatched scale to solving AI workplac

Decode the Future of AI and Customer Experience at Elevate'25 Digital Innovation Summit18.9.2025 15:00:00 CEST | Press release

With keynotes from Google Cloud and an independent research firm, Elevate’25 will provide actionable strategies to harness the power of AI and create exceptional experiences for today's mobile-first consumer As unprecedented advancements in AI reshape consumer behavior, digital innovation summit Elevate'25 opened for general registration today. Sponsored by Airship, the exclusive, one-day event is designed to equip business leaders with proven strategies to harness artificial intelligence and mobile-first technology for a decisive competitive advantage. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250918928987/en/ Gain insight and advice from firms at the frontier of AI-powered, mobile-first customer experiences. Taking place on October 15, 2025, at the iconic Shangri-La at The Shard in London, Elevate'25 moves beyond the headlines to provide a practical roadmap for success, featuring insights from brand executives and ind

Armis Receives Morgan Stanley 2025 Innovation Award18.9.2025 15:00:00 CEST | Press release

Armis Centrix™ Platform, powered by Armis’ AI driven cyber security intelligence engine, manages over 6.5 billion assets daily making it the largest of its kind in the world Armis, the cyber exposure management & security company, today announced that it has received the prestigious Innovation Award from Morgan Stanley at the Firm’s 23rd Tech Week event in Silicon Valley. For over 20 years, Morgan Stanley has celebrated companies with innovative capabilities that have materially impacted its business. Armis is being recognized for its partnership with Morgan Stanley, which chose Armis to help protect and secure its critical internet-of-things (IoT) assets across its organization. “Continuous and cutting-edge innovation that enables global cybersecurity teams to combat malicious actors is essential in today’s environment. The attack surface is growing exponentially, and Armis’ mission is to protect organizations’ entire attack surface by managing cyber risk exposure in real time,” said

Scoring Big With Fans: Balchem Spotlights the Power of Vitamin K2 at FC Bayern Women’s Season Opener18.9.2025 14:33:00 CEST | Press release

Balchem, a leading global manufacturer of specialty ingredients for human nutrition and health – and official partner of FC Bayern (FCB) Women’s football team - has launched its first ever direct-to-consumer initiative, showcasing the power of vitamin K2 to FCB fans. The company promoted its K2VITAL™ brand with an exhibition stand at the Allianz Arena in Munich, during the opening game of the Bundesliga (German football league) on 6 September. This initiative is part of Balchem’s latest marketing strategy, which aims to raise consumer awareness of the health benefits vitamin K2 has to offer, bridging the gap between B2B and B2C markets. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250918950889/en/ Balchem Spotlights The Power of Vitamin K2 at FC Bayern Women’s Season Opener Co-Branded K2 Health Vitamins Hit the Pitch The opening event of the season provided a unique platform for Balchem to promote K2VITAL™, a patented, typ

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye