Most cyber-attacks, including ransomware attacks and business email compromise (BEC), begin with phishing. Although losses due to ransomware are now in the billions annually, most ransomware protection and response measures do not adequately address phishing risks.
Established research shows that phishing attacks most commonly occur from a maliciously registered, confusingly similar domain name, a compromised or hijacked legitimate domain name or email spoofing.
CSC’s domain security research reveals that 57% of global 2000 companies rely on consumer-grade registrars exposing unnecessarily to higher security risks. “This research validates the crucial need for domain security measures to become a standard part of cybersecurity policies and cyber insurance underwriting guidelines to address complex cyberattacks,” said Aleksandr Yampolskiy, CEO of SecurityScorecard.
Engaging with an enterprise-class domain registrar can help to defend against these risks.
In this whitepaper, research done by SecurityScorecard shows that an organization’s choice in domain registrar is highly correlated to its cybersecurity rating. Organizations that selected enterprise-class registrars (ECRs) for domain management as opposed to consumer-grade domain registrars (CGRs) had a total score that was on average at least one-half to one letter grade higher.
Click on the link to download this SecurityScorecard whitepaper.