DE-CSC
CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its third annual Domain Security Report that found three out of four Forbes Global 2000 companies have not adopted key domain security measures—exposing them to high risk of security threats. These companies have implemented less than half of all domain security measures.
In addition, lookalike domains are targeting those companies as well—with 75% of homoglyph registrations being registered to unrelated third parties. That means many of the world’s largest brands contend with maliciously registered domains that look like their brands. The intent of these fake domain registrations is to leverage the trust placed on the targeted brand to launch phishing attacks or other forms of digital brand abuse, or IP infringement that leads to revenue loss, traffic diversion, and a diminished brand reputation. Homoglyph domains are just some of the endless domain spoofing tactics and permutations that can be used by phishers and malicious third parties.
Additional key takeaways from CSC’s research include:
-
137 companies (6.8%) had a domain security score of “0”
Not deploying any of the recommended domain security measures puts these companies at risk for a variety of attacks, including but not limited to domain and DNS hijacking attacks, network and data breaches, phishing and ransomware attacks, and business email compromise (BEC).
-
45% of companies that use enterprise-class domain registrars also deploy registry lock
Registry lock is a highly cost-effective means to protect domain names against accidental or unauthorized modifications or deletions. Only 5% of companies that use consumer-grade registrars have registry lock deployed. Additionally, only six organizations within the Global 2000 had the highest overall domain security score, which correlates with their use of an enterprise-class registrar.
-
DMARC is the only domain security measure with significantly increased adoption this year
Given all the news about phishing attacks—including their increase in volume and complexity—it’s no surprise that domain-based message authentication, reporting, and conformance (DMARC) adoption has increased by 12 percentage points in the last 12 months. However, growth in other domain security measures, such as registry lock, domain name system (DNS) redundancy, DNS security extensions (DNSSEC), and certificate authority authorization (CAA) records saw limited increases year-over-year.
“This report shows that while some progress has been made, a majority of the companies listed in the Forbes Global 2000 are still overlooking full implementation of foundational domain security measures,” says Mark Calandra, president of CSC’s Digital Brand Services. “A focus on securing legitimate domains while monitoring for malicious domains in parallel needs to be a bigger priority for companies that are advocating for a Zero Trust model to stay protected and thwart cyber risk. Otherwise, companies are exposing themselves to significant enterprise risks that can impact their cyber security posture, data protection, intellectual property, supply chains, consumer safety, revenue, and reputation.”
CSC’s report also found that 82% of the third parties registering homoglyph domains are actively masking their identity. This demonstrates the attempt to hide their ownership, showing they may have some nefarious intentions. Additionally, 48% have MX records in 2022, compared to 43% in 2021. MX records can be used to send phishing emails or to intercept email.
To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the Domain Security Report now at cscdbs.com/securityreport.
About CSC
CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20221115005251/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Thales Reinforces its Leadership in eSIM and IoT Connectivity with a ‘Ready to Use’ Certified Solution8.7.2025 08:00:00 CEST | Press release
At a time when billions of connected objects are reshaping industries, Thales has achieved an essential security certification for its eSIM solution, reinforcing its leadership in trusted connectivity management for the Internet of Things (IoT). The certification, granted by the GSMA under the eSIM Security Assurance (eSA) scheme, marks a significant milestone in enabling large-scale, secure, and efficient IoT deployments across industries including smart metering, healthcare, and automotive. This positions Thales as a trusted partner capable of providing full protection against advanced cyber threats — delivering end-to-end security solutions, from chip to cloud, and ensuring compliance with emerging security standards (e.g., the EU Cyber Resilience Act). With over 5.8 billion IoT cellular connections expected globally by 2030 (GSMA Intelligence), businesses and industries face growing pressure to deploy connected devices at scale — securely and efficiently. The SGP.32 IoT specificati
Invivoscribe Expands Flow Cytometry Services to Accelerate CAR-T Immunotherapy Development and Regulatory Readiness with the Initiation of CERo Therapeutics Phase 1 Clinical Trial8.7.2025 06:00:00 CEST | Press release
Invivoscribe Inc., a global leader in precision diagnostics and measurable residual disease (MRD) testing, is proud to support CERo Therapeutics Holdings, Inc., an innovative immunotherapy company seeking to advance the next generation of engineered T cell therapeutics that employ phagocytic mechanisms. Through this collaboration, LabPMM (Invivoscribe’s global reference laboratories) have customized their multiparametric flow cytometry (MFC) services and implemented their sensitive MFC AML MRD assay to supportCERo’s clinical trial of its lead compound, CER-1236. The trial targets Acute Myeloid Leukemia (AML) in patients who are relapsed/refractory, in remission with MRD, or newly diagnosed with TP53-mutated MDS/AML. AML is an aggressive blood cancer characterized by the rapid accumulation of abnormal myeloid cells in the bone marrow and blood, disrupting normal hematopoiesis.1 Treating AML is especially complex due to its genetic heterogeneity and the high risk of relapse. CAR-T (chime
Tigo Energy Adds Solar-Plus-Storage Portfolio in Czech Republic to Build on MLPE Success8.7.2025 06:00:00 CEST | Press release
Successful PPDS P4 protocol certification opens full range of three-phase Tigo EI Inverters and the EI Residential product suite for grid connection in second-strongest E.U. market for Tigo. Tigo Energy, Inc. (NASDAQ: TYGO) (“Tigo” or “Company”), a leading provider of intelligent solar and energy software solutions, today announced that the Company’s entire portfolio of three-phase Tigo EI Inverters has successfully passed the certification tests for compliance with the PPDS P4 requirements in the Czech Republic. Compliance with PPDS P4, formally known as Distribution System Operation Rules, Annex 4, is a prerequisite for grid connection of solar inverters in the Czech Republic, validating the compatibility with the technical conditions defined by the European Commission and adopted by local utility companies. In the wake of the proliferation of rapid shutdown requirements across Europe, with installers in the Czech Republic deploying nearly 107MW of Tigo MLPE in 2024, Tigo products ha
Murata Launches World’s First High-Frequency Filter Using XBAR Technology for 5G, Wi-Fi 7, and Future 6G Networks8.7.2025 04:00:00 CEST | Press release
Murata Manufacturing Co., Ltd. (TOKYO: 6981) (ISIN: JP3914400001) has announced the mass production and commercial shipment of the world’s first*1 high-frequency filter using XBAR technology*2. Developed by combining Murata’s proprietary Surface Acoustic Wave (SAW) filter expertise with XBAR technology from Murata's subsidiary Resonant Inc., it enables the extraction of desired signals while achieving both low insertion loss and high attenuation. These features are critical for the latest wireless technologies, including 5G, Wi-Fi 6E, Wi-Fi 7, and emerging 6G technologies. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250707682186/en/ [Murata Manufacturing Co., Ltd.] The world’s first high-frequency filter using XBAR technology The demand for reliable high-frequency communications continues to grow in response to the widespread deployment of 5G and the future development of 6G. Simultaneously, wireless local-area network (W
YES Delivers Multiple VertaCure LX Systems7.7.2025 21:34:00 CEST | Press release
Yield Engineering Systems (YES), a leading provider of process equipment for AI and HPC semiconductor applications, today announced the delivery of multiple VertaCure™ LX curing systems to one of Taiwan’s top outsourced semiconductor assembly and test (OSAT) providers. These systems will support advanced packaging processes for Edge Computing and HPC solutions, delivering critical low-temperature curing, annealing, and degassing for WLCSP, Plated Bump, and Cu Pillar applications. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250703001376/en/ VertaCure LX The VertaCure LX is a fully automated vacuum curing and degassing system engineered to ensure uniform temperature distribution and precise control of heating and cooling rates. This results in complete solvent removal, improved film properties, elimination of outgassing after cure, and outstanding particle performance. YES products have consistently demonstrated superior qu
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom