Business Wire

Holiday Shopping Warning: Simple Typos Can Lead Consumers and Brands to Online Fraud, Counterfeit Goods, and Cyber Crime

Share

CSC, a world leader in business, legal, tax, and domain security, today released new research from their Digital Brand Services (DBS) division warning consumers that simple URL typos could lead to significant online fraud, counterfeit goods, and cyber crime during the holiday shopping season. The company identified and analyzed registered domain typos (misspellings) associated with the 10 largest online shopping brands in the world and found that over 70% of the 1,553 registered domain typos appear to be owned by third parties.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20201117005233/en/

(Graphic: Business Wire)

(Graphic: Business Wire)

According to CSC’s new research, these third-party owned domains receive over five million visitors annually. In addition, 40% of these domains are using domain privacy services to mask or hide their ownership and identity, and close to 48% are configured with MX (mail) records that can be used for phishing and to intercept email. In its blog, CSC offers tips to both brand owners and consumers to protect themselves against fraudulent web properties and content.

A deep dive of the top 100 most visited typo domains shows they are being used in this manner:

  • 38% are pointing to advertising-related and pay-per-click web content, which can be used to spread malware via domain parking services
  • 27% had no live web content, yet 37% were configured to send and receive email with MX records
  • 15% were engaged in affiliate referrals, which means the brand owner could be targeted for unauthorized affiliate activity resulting in loss of revenue
  • 12% were pointing at shopping-related web content, which indicates that consumers could engage with nefarious retailers selling counterfeit goods while brand owners lose revenue
  • 8% were pointing toward malicious web content e.g., malware

During the holiday shopping season, just one hour of downtime can cost a business over $500,000 in lost revenue*. Despite this, many global eCommerce and shopping companies are still lacking basic domain security measures that could prevent this from happening. For instance, only 16% of the top 500 global eCommerce and shopping domains leverage domain name system (DNS) hosting redundancy, which could secure their online presence from a distributed denial of service (DDoS) attacks. In addition, only 18% use registry locks that prevent DNS hijacking attacks that could redirect consumers to alternate websites. Lastly, 40% of retailers do not use enterprise-class domain registrars. This is partially explained by the fact that 40% of the observed domains still rely on retail registrars that typically don’t provide advanced domain security features.

In light of the global pandemic, both consumers and leading brands have embraced online shopping as we head into the 2020 holiday season. As such, we wanted to call attention to how brands and consumers are at increased risk for a multitude of threat vectors associated with online fraud, counterfeits, revenue leakage and many other cyber criminal activities this year,” says Ihab Shraim, chief technology officer for CSC. “As evidenced by the sheer number of mail-in votes in the U.S. election, consumers are looking for safe alternatives to in-person interactions, and it’s important for brands to not only provide those digital channels, but also ensure they are secure from online threat vectors.”

“We’re delighted that companies like CSC are advocating for companies and online brands to put the necessary security protocols in place to protect not only their brand reputation, but their consumers, from online fraud and cyber crime,” says Daniel Eliot, director of Education and Strategic Initiatives at the National Cyber Security Alliance (NCSA). “The NCSA's mission is to educate consumers and businesses about these credible risks, and the importance of using recommended cyber security best practices. CSC’s research is also an important part of advocating for consumers, and showing the pervasive risk of these cyber attacks and fraudulent domains.”

Additional resources:

*gremlin.com/ecommerce-cost-of-downtime/

About CSC

CSC is the trusted provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system, digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known security blind spots that exist and help them secure their digital assets. By leveraging CSC’s proprietary solutions, companies can get secure to protect against cyber threats to their online assets, helping them avoid devastating revenue loss, brand reputation damage, or significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

Contact information

Christine Blake
W2 Communications
703-877-8114
CSC@w2comm.com
CSC News Room

About Business Wire

Business Wire
Business Wire



Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

C3.ai Digital Transformation Institute Announces Shell as New Industry Partner4.3.2021 20:00:00 CETPress release

The C3.ai Digital Transformation Institute (DTI) today announced that global energy company Shell is the newest industry partner to join the consortium of universities, national laboratories, and companies that make up the Institute. Shell’s Chief Scientist - Computation and Data Science Detlef Hohl will represent the company in the consortium. The DTI Industry Partner Program enables leading companies from around the world to engage with DTI researchers and activities and to contribute data sets that will be available for research after anonymization. Industry partners also are encouraged to engage with Institute researchers and collaborate on research projects as well as participate in DTI conferences. DTI recently released its second call for proposals to fund advanced research projects focused on applying digital transformation and AI to address energy and climate security. “Shell has established clear leadership in new energy, having laid out its ‘Powering Progress’ commitment to

Dole Launches “The Dole Way” Sustainability Campaign4.3.2021 19:22:00 CETPress release

Dole Food Company announced today the launching of an integrated sustainability campaign aimed at amplifying its commitment to the key enterprise-wide sustainability goals launched in 2020 under “The Dole Way.” As a leader in the produce industry for over 150 years, Dole believes in acting on its promise to increase sustainability, transparency, corporate responsibility and trust. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210304005912/en/ The Dole Way framework paves the way for further improvements in areas where Dole believes it can make the biggest positive impacts (Photo: Business Wire) “The Dole Way” campaign kicked-off with a live, internal event on February 25, led by Dole’s president and chief executive officer, Johan Linden, and will be sustained over the next several months through integrated earned and owned social media efforts. “The Dole Way” campaign illustrates a path of transformation that will recognize

Milliken & Company Appoints Cindy Boiter as Executive Vice President, Chemical Division President4.3.2021 18:00:00 CETPress release

Milliken & Company is pleased to announce Cindy Boiter has been promoted to executive vice president and president of Milliken’s Chemical Division. Effective March 15, she will step into the role currently held by David Moody as he transitions to a role outside of Milliken. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210304005823/en/ Cindy Boiter, newly announced executive vice president and president of Milliken's Chemical Division (Photo: Business Wire) “It is an exciting appointment for our company, as Cindy will become the first-ever woman division president at Milliken,” shares Halsey Cook, president and CEO for Milliken. “She is uniquely qualified to lead our chemical division thanks to her extensive experience in the division, the acquisitions she has completed and her embodiment of Milliken’s purpose.” Boiter joined Milliken’s Chemical Division in 2012 as marketing, strategy and business development director and p

Verimatrix Takes Home Two 2021 Gold Cybersecurity Excellence Awards4.3.2021 17:45:00 CETPress release

Regulatory News: Verimatrix, (Paris:VMX) (Euronext Paris: VMX), the leader in powering the modern connected world with people-centered security, today announced it won two gold awards in this year’s Cybersecurity Excellence Awards program. Verimatrix Multi-DRM won in the Digital Rights Management (North America) category while Verimatrix’s Application Shielding suite of products were recognized in the Automotive Security IoT (North America) category. It marks the third straight year the company has received honors from the award program that pays tribute to a wide variety of cybersecurity companies spanning the world’s largest vendors to the most recent startups. Verimatrix’s code shielding and embedded security capabilities picked up kudos in previous years. “The automotive industry stands as a superb example of a vertical where Verimatrix uniquely addresses multiple cybersecurity needs – in this case, vital components such as keyless entry mobile apps and infotainment systems, said A

Andersen Global Strengthens Presence with Jordanian Tax Firm4.3.2021 15:30:00 CETPress release

Andersen Global enters into a Collaboration Agreement with Amman-based tax firm Al-Tillawi & Al-Khateeb Co., adding dimension to the existing capabilities of the organization’s member firm in Jordan. Founded in 1996, Al-Tillawi & Al-Khateeb Co. provides a wide range of tax and advisory services including corporate and family business, employment, mergers and acquisitions, outsourcing and social security as well as IT solutions. The firm, led by Managing Partner Waleed Al Tillawi, serves a broad clientele in industries such as power and energy, technology and communication, hotel and tourism, finance and retail. “Our team’s dedication to transparency and independence have been the driving forces behind the high-quality client services we provide,” Waleed said. “Collaborating with like-minded individuals at Andersen Global will allow us to take our service offerings to the next level and expand our reach more broadly. We look forward to working with the organization’s member and collabor

Business Finland Awarded Funding for Medicortex4.3.2021 15:08:00 CETPress release

Medicortex Finland Oy, a Finnish biotechnology company focusing on brain injury diagnostics and drug development, announces receiving funding from the Finnish government innovation funding branch Business Finland. The funds are meant to expedite the development of a medical diagnostic test to improve detection of traumatic brain injury (TBI) and concussion. Medicortex has discovered novel biomarkers of head injury in body fluids such as saliva and urine. The funding which covers 50% of the expenses will support a project consisting of the development of a test kit for easy and rapid detection of brain injury and concussion. The objective of the company’s biomarker program is to generate new means for early detection of brain injury, which is a global unresolved issue. Current methods of brain injury diagnostics which are based on neurological examination and imaging do not reliably detect mild injury, yet they can have implications that are fatal or develop into a chronic condition if

Kent County Council Switches to Rimini Street Support for its Oracle Applications and Database Software4.3.2021 15:05:00 CETPress release

Rimini Street, Inc. (Nasdaq: RMNI), a global provider of enterprise software products and services, the leading third-party support provider for Oracle and SAP software products and a Salesforce partner, today announced that Kent County Council, the largest County Council in England, is switching support for its Oracle E-Business Suite 12.1 application and Oracle Database software to Rimini Street. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210304005642/en/ Kent County Council Switches to Rimini Street Support for its Oracle Applications and Database Software. (Photo: Business Wire) Digital Transformation Possible, Even with Constrained IT Budgets Like other public sector bodies in the UK, Kent County Council is under significant pressure to allocate its annual budget effectively to meet the challenges affecting the county. With 1,759 core users and 21,096 self-service users spread across the organization, as well as sch

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom