DE-CSC
CSC , a world leader in business, legal, tax, and domain security, today released new research from their Digital Brand Services (DBS) division that reveals areas of risk for prominent election-related websites. The research indicates that web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are being targeted for disinformation activities such as domain spoofing, and threats including domain name and domain name system (DNS) hijacking, and phishing.
On the heels of its recent Forbes Global 2000 research , CSC is seeing major risks related to the manipulation of web properties that voters rely on for information and donations. Findings show that over 90% of these web properties are not using registry locks to protect their domains from domain and DNS hijacking that can lead to phishing attacks, network breaches, and email compromise.
“As noted in our previous research, we’ve consistently seen domains emerge as a threat vector for enterprises, and an area that is continuously overlooked in cyber security. Due to the sensitivity and importance of the U.S. election process, domain security remains a major vulnerability for the potential of foreign interference, fraud, and misinformation,” says Mark Calandra, executive vice president for CSC DBS. “As an organization with the most visibility into the domain landscape, we advocate for the sanctity of voter trust and encourage both presidential candidates and other websites in the electoral ecosystem to prioritize domain security on their websites to ensure security and build confidence.”
"We have reached the point where awareness is not enough. Those responsible for managing domain registrations, including registrars and hosting companies, need to have an actionable plan that is aligned with best practices. Additionally, experiences must be shared between those within the industry for the good of the wider internet community," said Matthew Stith, industry liaison at Spamhaus. “Without this commitment, users will be open to continued manipulation and fraud."
In April of 2020 when domain names were at the center of many COVID-19 related fraud schemes, Senators Mazie K. Hirono (D-Hawaii), Cory Booker (D-N.J.), and Maggie Hassan (D-N.H.) called on domain name registrars and hosting sites to combat scams and misinformation. CSC’s research shows that domain security and preventing domain spoofing continue to be an oversight even with top election-related web properties. Our research shows that more than 75% of these election-related domains are using retail-grade domain registrars, which do not provide advanced security protocols.
Our research also showed that, of the typo domains related to joebiden.com and donaldjtrump.com , 60% are still available for registration, thereby posing future threats. Additionally, more than a third of those presidential candidate typo domains are linked to third parties; of that one third, nearly 70%:
- Are configured to send and receive emails, which can be used to lure donors to phishing sites
- Were registered in 2020 leading up to the November election
- Disguise the owner’s identity behind proxy or privacy services
With cyber criminals subverting activities on these websites to disseminate misinformation or commit fraud against web visitors, there is also the threat of ransomware. Simon Chassar, chief revenue officer at NTT Ltd.’s Security division states, "NTT's September Monthly Threat Report identified ransomware as a significant threat to the U.S. election infrastructure. With DNS, domains, and email being a potential vehicle to distribute malicious content, our NTT Ltd. Security division suggests focus in this area, ensuring it is secure by design."
For additional details on these findings, visit the CSC blog “U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security.”
Note: CSC aggregated this data using SimilarWeb.com for the period of August 1 – August 30, 2020.
About CSC
CSC is the trusted provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known security blind spots that exist and help them secure their digital assets. By leveraging CSC’s proprietary solutions, companies can get secure to protect against cyber threats to their online assets, helping them avoid devastating revenue loss, brand reputation damage, or significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com .
View source version on businesswire.com: https://www.businesswire.com/news/home/20201008005203/en/
Link:
Social Media:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Andersen Consulting styrker sit udbud af cybersikkerhed med tilføjelsen af S-RM11.12.2025 00:05:00 CET | Pressemeddelelse
Andersen Consulting indgår en samarbejdsaftale med S‑RM, en global efterretnings- og cybersikkerhedsvirksomhed, og styrker dermed sin evne til at understøtte globale kunder med risikostyring, hændelsesrespons og strategisk rådgivning. S-RM har hovedsæde i Storbritannien og leverer integrerede ydelser, der spænder over cyberrådgivning, digital efterforskning, hændelseshåndtering, virksomhedsefterretning og due diligence i forbindelse med transaktioner. Firmaet betjener family offices, kapitalfonde, Fortune 500-virksomheder og mellemstore virksomheder inden for bl.a. finans-, olie- og sundhedssektoren, og tilbyder praktisk cybersikkerhedsstyring samt tilpassede risikoplatforme. Med døgnåben hændelseshåndtering og dybdegående efterforskningsekspertise hjælper S-RM organisationer med at styrke deres modstandsdygtighed og træffe informerede beslutninger i komplekse miljøer. "I en tid, hvor trusler konstant udvikler sig, skal organisationer være proaktive, ikke reaktive," udtaler Heyrick Bon
Canva Unveils 2026 Design Trends: The Year of ‘Imperfect by Design’10.12.2025 23:52:00 CET | Press release
Canva’s third annual Design Trends Report uncovers insights from millions of Canva users and billions of designs to predict the must-know visual trends for creators and brands in 2026.90% surge in DIY-inspired searches, reflecting a shift toward raw, personal, and imperfect design.85% increase in searches for Zine and Substack inspired layouts as creators gravitate toward editorial style storytelling.80% of creators say 2026 is the year to regain creative control, embracing AI as a partner while prioritizing styles that feel human.54% growth in searches for clean layouts and simple branding as audiences gravitate toward pared back styles.527% surge in lo-fi aesthetic searches in favor of nostalgia driven, emotionally expressive visuals.220% jump in searches for “liminal” and “uncanny” content as lines between real and surreal blur. Canva, the world’s leading all-in-one visual communication platform, today unveiled its third annual Design Trends Report with bold predictions for creativi
Audiencerate Achieves Google Customer Match Partner Status, strengthening its role as a Global Data Provider10.12.2025 22:40:00 CET | Press release
Audiencerate, an international technology company specializing in data activation solutions and platforms within the AdTech and MarTech sectors, has been officially awarded by Google as a Customer Match Upload Partner. This certification is granted to a restricted number of global operators (https://support.google.com/google-ads/answer/7361372?hl=en) authorized to manage and onboard first-party data into the Google Ads and DV360 ecosystem. The company strengthen its strategic partnership with Google by adding the Customer Match Upload Partner accreditation to its existing status as a certified Google Data Provider. This new credential enables Audiencerate to seamlessly integrate proprietary audience segments and data into Google’s advertising platforms. The combination of these two accreditations represents an exceptionalsituation in the international landscape and solidifies Audiencerate's position in the digital advertising market, which is increasingly reliant on first-party data. T
Defence, Security and Resilience Bank (DSRB) Development Group – Official Statement10.12.2025 21:06:00 CET | Press release
On 8 September 2025, the Defence, Security and Resilience Bank (DSRB) Development Group convened a high-level meeting in the City of London with representatives from 37 nations, including all G7 members, alongside the European Commission, NATO, European Parliament, Global Banks, and Ratings Agencies to discuss the DSRB. A number of countries have now indicated their intention to begin the formal steps required to bring the DSRB into existence. This phased pattern of engagement is standard in the creation of international financial institutions, which typically begin with a core group of anchor nations and expand as additional members join through charter negotiations and subsequent capital rounds. The DSRB is designed to complement the European Union’s SAFE initiative, offering a broader multilateral platform that brings together NATO and Indo-Pacific nations and mobilises global capital to build the balance-sheet capacity required to finance nations’ defence spending and long-term res
ClickUp 4.0's Craft & Quality is Available Today, Maximizing Human Productivity10.12.2025 19:26:00 CET | Press release
Hand-crafted to deliver the most polished, powerful ClickUp experience ever created ClickUp today announced the launch of ClickUp 4.0, a groundbreaking release designed to end the chaos of work sprawl and usher in a new era of work. With a bold vision for the convergence of software, people, and AI, ClickUp 4.0 delivers a suite of powerful new features that empower teams to do their best work in one converged workspace. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251210712132/en/ A new era of ClickUp For years, organizations have struggled with fragmented workflows, siloed tools, and the constant friction of context switching. ClickUp 4.0 is the answer: a single, beautifully crafted workspace that brings together tasks, docs, goals, chat, and AI-powered automation. The result is a platform that not only saves time but also sparks creativity and collaboration at every level. “Software is converging - we always knew it woul
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom