In a recent analysis conducted by Vincent D’Angelo, the Global Director of Corporate Development and Strategic Alliances at CSC, the domain security of the Forbes Global 2000 companies has been scrutinized. The CSC’s 2024 Domain Security Report delves into the realm of domain security features and highlights the highest and lowest-performing industries in terms of their adoption of these essential measures.
According to the report, industries such as Business Services and Supplies, IT Software and Services, Media, Retailing, Hotels, and Technology Hardware and Equipment emerged as the top five highest-performing sectors in terms of domain security. On the flip side, industries like Construction, Food and Drink and Tobacco, Food Markets, Materials, and Oil and Gas Operations were categorized as the lowest-performing industries in this regard.
One of the key findings of CSC’s research revealed that a staggering 80% of registered web domains resembling a Global 2000 brand actually do not belong to that brand. Moreover, within this category of lookalike fake domains, 42% were found to have MX records, which can potentially be exploited for phishing emails or email interception. This highlights the need for heightened vigilance and stringent security measures in the digital domain.
The report also shed light on the growing adoption of registry lock, which has witnessed a 7 percentage point increase since 2020. However, despite this uptick, overall adoption remains low at 24%. Registry locks play a crucial role in ensuring end-to-end domain name security by mitigating human error and third-party risks. By safeguarding domain names against unauthorized modifications or deletions, registry locks offer a cost-effective solution to bolstering domain security.
Alarmingly, the analysis revealed that 107 of the world’s largest public companies have a domain security score of zero. This translates to 5% of the Forbes Global 2000 companies failing to implement any of the recommended domain security measures, thereby exposing themselves to the highest level of risk. A security score of zero signifies a complete lack of adoption of any security measure, leaving these companies vulnerable to a host of domain security threats.
Furthermore, the utilization of DMARC has seen a substantial 82% increase since 2020. This surge in adoption can be attributed to the rising incidence of phishing attacks, with the Anti-Phishing Working Group reporting nearly five million logged phishing attacks in 2023—the highest on record. DMARC, an email validation system designed to safeguard companies’ email domains against spoofing and phishing scams, has emerged as a crucial defense mechanism in the face of escalating cyber threats.
In conclusion, the CSC’s comprehensive analysis underscores the growing importance of robust domain security measures in safeguarding the digital presence of organizations. As cyber threats continue to evolve and proliferate, companies must prioritize the implementation of reliable security protocols to mitigate risks and fortify their online assets against malicious actors.