DE-CSC
8.10.2020 12:02:07 CEST | Business Wire | Press release
CSC , a world leader in business, legal, tax, and domain security, today released new research from their Digital Brand Services (DBS) division that reveals areas of risk for prominent election-related websites. The research indicates that web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are being targeted for disinformation activities such as domain spoofing, and threats including domain name and domain name system (DNS) hijacking, and phishing.
On the heels of its recent Forbes Global 2000 research , CSC is seeing major risks related to the manipulation of web properties that voters rely on for information and donations. Findings show that over 90% of these web properties are not using registry locks to protect their domains from domain and DNS hijacking that can lead to phishing attacks, network breaches, and email compromise.
“As noted in our previous research, we’ve consistently seen domains emerge as a threat vector for enterprises, and an area that is continuously overlooked in cyber security. Due to the sensitivity and importance of the U.S. election process, domain security remains a major vulnerability for the potential of foreign interference, fraud, and misinformation,” says Mark Calandra, executive vice president for CSC DBS. “As an organization with the most visibility into the domain landscape, we advocate for the sanctity of voter trust and encourage both presidential candidates and other websites in the electoral ecosystem to prioritize domain security on their websites to ensure security and build confidence.”
"We have reached the point where awareness is not enough. Those responsible for managing domain registrations, including registrars and hosting companies, need to have an actionable plan that is aligned with best practices. Additionally, experiences must be shared between those within the industry for the good of the wider internet community," said Matthew Stith, industry liaison at Spamhaus. “Without this commitment, users will be open to continued manipulation and fraud."
In April of 2020 when domain names were at the center of many COVID-19 related fraud schemes, Senators Mazie K. Hirono (D-Hawaii), Cory Booker (D-N.J.), and Maggie Hassan (D-N.H.) called on domain name registrars and hosting sites to combat scams and misinformation. CSC’s research shows that domain security and preventing domain spoofing continue to be an oversight even with top election-related web properties. Our research shows that more than 75% of these election-related domains are using retail-grade domain registrars, which do not provide advanced security protocols.
Our research also showed that, of the typo domains related to joebiden.com and donaldjtrump.com , 60% are still available for registration, thereby posing future threats. Additionally, more than a third of those presidential candidate typo domains are linked to third parties; of that one third, nearly 70%:
- Are configured to send and receive emails, which can be used to lure donors to phishing sites
- Were registered in 2020 leading up to the November election
- Disguise the owner’s identity behind proxy or privacy services
With cyber criminals subverting activities on these websites to disseminate misinformation or commit fraud against web visitors, there is also the threat of ransomware. Simon Chassar, chief revenue officer at NTT Ltd.’s Security division states, "NTT's September Monthly Threat Report identified ransomware as a significant threat to the U.S. election infrastructure. With DNS, domains, and email being a potential vehicle to distribute malicious content, our NTT Ltd. Security division suggests focus in this area, ensuring it is secure by design."
For additional details on these findings, visit the CSC blog “U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security.”
Note: CSC aggregated this data using SimilarWeb.com for the period of August 1 – August 30, 2020.
About CSC
CSC is the trusted provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known security blind spots that exist and help them secure their digital assets. By leveraging CSC’s proprietary solutions, companies can get secure to protect against cyber threats to their online assets, helping them avoid devastating revenue loss, brand reputation damage, or significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com .
View source version on businesswire.com: https://www.businesswire.com/news/home/20201008005203/en/
Link:
Social Media:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Enhertu® Approved in the EU as First Tumor Agnostic HER2 Directed Therapy and Antibody Drug Conjugate for Patients with Previously Treated HER2 Positive Metastatic Solid Tumors29.6.2026 08:30:00 CEST | Press release
Approval based on three phase 2 trials of Daiichi Sankyo and AstraZeneca’s Enhertu that demonstrated clinically meaningful responses across a broad range of tumors Enhertu now approved for six indications in the EU Enhertu® (trastuzumab deruxtecan) has been approved in the European Union (EU) as a monotherapy for the treatment of adult patients with unresectable or metastatic HER2 positive (immunohistochemistry [IHC] 3+) solid tumors who have received prior treatment and who have no satisfactory treatment options. Enhertu is a specifically engineered HER2 directed DXd antibody drug conjugate (ADC) discovered by Daiichi Sankyo (TSE: 4568) and being jointly developed and commercialized by Daiichi Sankyo and AstraZeneca (LSE/STO/NYSE: AZN). The approval by the European Commission follows the positive opinion of the Committee for Medicinal Products for Human Use of the European Medicines Agency and is based on results from subgroups of patients with HER2 positive (IHC 3+) tumors across thr
Beerenberg Prevails in Patent Case Against Aspen Aerogels29.6.2026 07:00:00 CEST | Press release
The ruling confirms that Beerenberg did not infringe Aspen Aerogels’ patents. The Korean Patent Court has invalidated three of Aspen Aerogels’ patents related to improved hydrophobic aerogel material. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260628192007/en/ Beerenberg delivers high-end insulation solutions built for performance, reliability, and long-term value. (Photo: Beerenberg) The ruling confirms the conclusion of the Intellectual Property Trial and Appeal Board (IPTAB) that the patents did not meet the necessary requirements for patentability. Beerenberg, which specializes in high-end insulation products, welcomes the court’s decision. “We are pleased that the case has now been concluded and that any uncertainty regarding the infringement claims has been removed,” says CEO Arild Apelthun. About Beerenberg Beerenberg has delivered cost-efficient solutions to a wide range of industrial enterprises for 49 years. Th
Seiden Law LLP States: Cambodian Businessman Leak Yim, Wrongfully Accused in Thailand, Seeks Redress in U.S. Court29.6.2026 06:00:00 CEST | Press release
Seiden Law LLP (“Seiden Law”), legal counsel for Mr. Leak Yim, a Cambodia national, and his family, announces the filing of an application in U.S. federal district court in Washington D.C., seeking court-ordered discovery to uncover the false and misleading information that may have led to mistaken prosecution in Thailand of Mr. Yim as well as his unwarranted identification to Congress as being associated with scam centers in Asia. 28 U.S.C. § 1782 (“1782”) provides powerful evidence-gathering remedies, permitting an applicant to obtain evidence in the United States to assist international proceedings. Seiden Law, a U.S. law firm with significant experience in 1782 cases, has filed this application to compel production of documents and sworn testimony from persons in the U.S. that will shed light on the circumstances surrounding recent actions against Mr. Yim. “Mr. Yim and his young family are the apparent victims of guilt by association and political persecution,” said Robert Seiden,
Sultan Bin Ahmed Attends Media Master's Graduation in Spain28.6.2026 18:40:00 CEST | Press release
His Highness Sheikh Sultan bin Ahmed bin Sultan Al Qasimi, Deputy Ruler of Sharjah and President of the University of Sharjah (UOS), attended on Friday, at the University of Barcelona, the graduation ceremony of the first cohort of the Master of Science in Media Entrepreneurship and Digital Innovation programme, first of its kind, offered by the University of Sharjah's College of Communication in partnership with the University of Barcelona and with strategic support from Sharjah Media City (Shams). This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260628429537/en/ Sultan Bin Ahmed attends Media Master's Graduation in Spain (Photo: AETOSWire) His Highness expressed his pride in their achievements and praised the strong partnership between the two universities, which share a commitment to knowledge, excellence and global understanding. His Highness stressed that graduation marks the beginning of a new journey rather than its con
VerSprite Launches Fork and Knife: AI-Driven Threat Modeling and Adversarial Testing Built for the Speed of Modern Software26.6.2026 23:28:00 CEST | Press release
Powered by the risk-centric PASTA methodology and two decades of accredited offensive security, the integrated platform lets enterprises threat model in a security sprint—then prove the risk through AI-led, human-on-the-loop testing. VerSprite, a global leader in risk-based threat modeling and the firm behind the PASTA (Process for Attack Simulation and Threat Analysis) methodology, today announced the general availability of Fork (www.forktm.com), a continuous application threat modeling platform, alongside Knife, an AI-led, human-on-the-loop adversarial testing platform for web applications and web API endpoints. Together, the two products operationalize a new model for product security—one where applications are securely designed, continuously modeled, and actively tested as part of the build process itself. The launch addresses a problem every security leader knows but few tools have solved: threat modeling is essential, never more so than in an AI-driven era, yet it has remained s
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom