Brand Protection

 Sponsored
by

Noteworthy

Subdomain Hijacking Vulnerabilities Report: One in Five DNS Records Are Left in a State in Which They Are Vulnerable to Subdomain Hijacking

CSC
We are the business behind business May 04, 2023 |   Read More |   10,450

How Dormant Domains Can Be Weaponized During Events Like the 2024 U.S. Election

Ihab Shraim
CTO at CSC Nov 01, 2024 |   Read More |   7,154

Thousands of Third-Party Domains Target Super Bowl Betting Brands

Ihab Shraim
CTO at CSC Apr 16, 2025 |   Read More |   700

Five Years of Domain Security Insights: CSC's Latest Findings on Global 2000 Companies

CSC
We are the business behind business Nov 01, 2024 |   Read More |   3,585

A Guide to Navigating the Chinese Market

CSC
We are the business behind business Apr 10, 2025 |   Read More |   1,686

Brand Protection / Featured Blogs

Towards a Generalised Threat-Scoring Framework for Prioritising Results From Brand Monitoring Programmes

May 09, 2025

The ability to rank results according to the level of threat they pose (based on factors such as, for example, the extent to which a webpage relates to a brand of interest) is a key component of many brand protection services. The prioritisation process has a number of purposes, including the identification of: (a) priority targets for further analysis; (b) candidates for content tracking (i.e. regular reinspection of content or configuration, and the generation of an alert if high-concern findings are identified) - as may be appropriate in cases where a domain name presents a high potential level of risk but is not currently associated with any live site content; and (c) priority targets for enforcement actions.

Beyond WHOIS: Rethinking Domain Verification in a Post-GDPR World

May 08, 2025

The introduction of GDPR in 2018, and the subsequent tightening of privacy regulations around the world, was a necessary step toward protecting user data. Consumers gained critical rights over their personal information, and companies were forced to adopt stronger standards for how they collect, store, and use that data. However, one unintended consequence has been the erosion of access to domain registration information once easily available through WHOIS databases.

Thousands of Third-Party Domains Target Super Bowl Betting Brands

Apr 16, 2025

When major events like the Super Bowl are on the horizon, cybercriminals exploit public trust by creating fraudulent domains for fake betting sites, phishing, and malware distribution. CSC's research into top online sportsbooks highlights the hidden risks of dormant domains, which, though inactive, can quickly be repurposed for cyber attacks. Overlooked yet dangerous, these domains play a key role in impersonation, misinformation, and scams targeting event-driven traffic, underscoring the need for continuous monitoring of lookalike, dropped, re-registered, and newly registered domains.

Time to Act as Apple Sets Wheels in Motion for Shorter Certificate Life Cycles

Apr 15, 2025

You may have read our previous blog about the pending reduction of digital certificate life cycles to just 90 days. This past weekend, the issue gained momentum at the Certification Authority Browser Forum when more detail was discussed following the proposed ballot to set a timeline for shorter lifetime certificates by Apple. This creates real urgency for organizations of all sizes to seriously consider and implement automation into their certificate life cycle management.

‘Notorious Hosting Providers’: An Overview of the Highest-Threat Hosts From IP-address Blacklist Analysis

Apr 03, 2025

One major element of many brand-protection programmes is the use of an algorithm to sort the findings identified through monitoring, according to their relevance or level of potential threat. This prioritisation process offers a number of benefits, including the identification of priority targets for further analysis, content tracking, or enforcement.

Br’AI’ve New World - Part 1: Brand Protection ‘Clustering’ as a Candidate Task for the Application of AI Capabilities

Mar 05, 2025

As counterfeit networks grow more elusive, AI-driven clustering could revolutionize brand protection. By linking disparate findings, identifying serial infringers, and enabling bulk enforcement, AI offers a smarter approach to monitoring and takedown efforts. Yet, challenges remain - from data reliability to analyzing complex content. Companies that master AI-driven clustering may gain a significant advantage in the fight against brand abuse.

Beyond WHOIS: CircleID and Edgemoor Research Institute Inaugural Event on Balancing Privacy and Legitimate Data Needs

Feb 11, 2025

The global debate over Internet privacy and security took center stage in a webinar hosted by CircleID in partnership with the Edgemoor Research Institute. The event marked the first in a series exploring the delicate balance between safeguarding personal data and ensuring legitimate access to domain name registration details. As governments, cybersecurity experts, law enforcement, and intellectual property holders grapple with the evolving regulatory landscape, Project Jake seeks to establish a framework that prioritizes policy clarity, efficiency, and adaptability.

Unregistered Gems Part 6: Phonemizing Strings to Find Brandable Domains

Jan 14, 2025

The UnregisteredGems.com series of articles explores a range of techniques to filter and search through the universe of unregistered domain names, in order to find examples which may be compelling candidates for entities looking to select a new brand name (and its associated domain). The previous instalment of the series looked at the categorisation of candidate names according to the phonetic characteristics of its constituent consonants, using a simple one-to-one mapping between each consonant and a corresponding phonetic group.

Unregistered Gems Part 5: Using Groupings to Find Brandable Domains

Jan 08, 2025

The initial instalment of my recent series of articles on domain name discovery1 considered the use of phonotactic analysis - that is, the measure of the similarity of a string to the 'corpus' of other words in a language - to identify available unregistered candidate domains which may be of interest for potential brandability.

A Review of the 2024 Threat Landscape and Implications for Domain Security

Dec 10, 2024

The cybersecurity landscape in 2024 has been characterised by unprecedented complexity and rapidly evolving threats, presenting significant challenges for organisations across all sectors. As the digital attack surface expands and threat actors employ increasingly sophisticated techniques, domain security has emerged as a critical component of a robust cybersecurity strategy.

Industry Updates

A Guide to Navigating the Chinese Market

  • By CSC
  • Apr 10, 2025

Amazon Invested in New gTLDs

Five Years of Domain Security Insights: CSC’s Latest Findings on Global 2000 Companies

  • By CSC
  • Nov 01, 2024

Four Steps to Mitigate Subdomain Hijacking

  • By CSC
  • Aug 06, 2024

The Most Phished Brands of 2024 in the DNS Spotlight

NIS2 and Its Implications for Global Brands

  • By CSC
  • Jul 05, 2024

Subdomain Hijacking in the News Again - What is It?

  • By CSC
  • May 20, 2024

Thoughts on RDRS for Brand Owners

  • By CSC
  • May 13, 2024

CSC Partners with NetDiligence to Help Mitigate Cyber Risks and Support the Cyber Insurance Ecosystem

  • By CSC
  • Feb 21, 2024

WhoisXML API Newly Registered Domains V2 (NRD2) Achieved Massive Coverage Growth

DNS Abuse: Finding Our Way Forward Together

  • By CSC
  • Dec 28, 2023

Domain Blocking: The Future of Brand Protection

The Hidden Secret About Your DNS Zones and Combatting Phishing Campaigns

  • By CSC
  • Oct 12, 2023

From URSNIF IoCs to Software Spoofing: Using DNS Intel to Connect the Dots

Does Your Supplier’s Domain Oversight Impact You?

  • By CSC
  • Oct 03, 2023
View More