43% of .AI domains are registered to unrelated third parties with research indicating a 350% rise in domain disputes over .AI extensions
WILMINGTON, Del.–(BUSINESS WIRE)–CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, today released its 2023 Domain Security Report which found that 43% of Forbes Global 2000 companies do not have control over their branded artificial intelligence (.AI) domain names, and they’re actually registered by third parties. In addition, 49% of the .AI brand domains for these companies remain unregistered, leaving them exposed to fraud and brand infringement.
The 2023 Domain Security Report highlights how—despite rising phishing and online fraud—many companies are vastly unaware of the state of their domain name portfolio and overlook foundational domain security measures such as registry lock, domain-based message authentication, reporting, and conformance (DMARC), DNS security extensions (DNSSEC), and DNS redundancy. The rapid rise in AI adoption and integration further elevates the need for domain security investments. Driven by the trending popularity for AI, cybercriminals are now taking advantage of trusted brands by creating fraudulent .AI domain extensions that misdirect internet users. This is emphasized by the 350% year-over-year increase in domain dispute cases involving .AI extensions in 2023 from companies who realized .AI domains using their brand were misappropriated by third parties.
“Over the last year, we’ve seen a surge in cybercriminals exploiting AI’s popularity by attempting to register the domains of trusted brands for malicious activity. Companies need to deploy proactive monitoring and domain security measures beyond just foundational efforts,” says Mark Calandra, president of CSC’s Digital Brand Services division. “In addition, we warn about subdomain hijacking as our research shows that 1 in 5 companies have active DNS records that do not resolve, making them vulnerable to subdomain hijacking attacks. The report’s findings point to a real need for companies to prioritize domain security if they wish to stay ahead of the numerous emerging threats on the horizon.”
Additional key insights from CSC’s research include:
CSC’s report provides a more detailed breakdown of the highest and lowest performing industries based on the adoption of key domain security features such as having an enterprise-class registrar, registry lock, certificate authority authorization (CAA) records, DNS redundancy, DNSSEC, sender policy framework (SPF), DomainKeys identified mail (DKIM) and DMARC. The top five highest performing industries include IT software and services; media; business services and supplies; hotels, restaurants and leisure; and healthcare equipment and services. The lowest performing industries include utilities, trading companies, food markets, construction and materials.
To learn more about CSC’s approach to domain security, visit cscdbs.com. Download the 2023 Domain Security Report now.
CSC is the trusted security and threat intelligence provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known cybersecurity oversights that exist, and help them secure their online digital assets and brands. By leveraging CSC’s proprietary technology, companies can solidify their security posture to protect against cyber threat vectors targeting their online assets and brand reputation, helping them avoid devastating revenue loss, and significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.
CSC News Room
CSC’s 2023 Domain Security Report finds many Global 2000 companies neglect their .AI domain extensions despite possible cybercrime
CSC News Room