Domain Management

Sponsored
by

Noteworthy

Blogs

Securing Weak Links in Supply Chain Attacks

We've all heard the term, "you're only as strong as your weakest link." Whether talking about a tug of war on the playground, a sports team, or a business, this rings as true as ever. Every business relies on a series of suppliers and vendors -- be it the dairy farm supplying milk to the multinational food manufacturer or the payment systems that retailers use. These links form supply chains that every business, large and small, deals with. There is simply no way around it. more

The World of the Subdomain

A web domain name is the foundational piece of internet property allowing its owner (registrant) to construct and host an associated website. On a domain, the owner is also able to construct whatever subdomains they wish -- a process that is technically achieved via the configuration of records on the authoritative domain name system (DNS) server. more

Domain Security: An Underused Cybersecurity Strategy and First Line of Defense in Your Zero Trust Model

Domain security is a critical component to help mitigate cyberattacks in the early stages - your first line of defense in your organization's Zero Trust model. According to the Cybersecurity and Infrastructure Security Agency (CISA), most cyberattacks - including ransomware and business email compromise (BEC) - begin with phishing. Although losses due to ransomware now exceed billions annually, most ransomware protection and response measures don't adequately address phishing risks in the early stages of an attack because they don't include domain security measures to protect against the most common phishing attacks. more

New Research from CSC on the Impact of COVID-19 on Internet Security and Safety

Hackers are using company domain names for malicious attacks more than ever before. Established research shows that phishing and related malware attacks most commonly occur from a compromised or hijacked legitimate domain name, a maliciously registered, confusingly similar domain name, or via email header spoofing. Domain security intelligence is the first line of defense in preventing domain cyberattacks. more

2021 Domain Name Year In Review

Is it really 2022? Is it? Although many might view 2021 as another "lost" year due to the pandemic, filled with Zoom™ meetings, virtual conferences, working from home and restricted travel - there were a number of notable domain name stories which deserve to be highlighted. So, without further ado, here are the top 10 biggest domain name stories of 2021 - let's go! more

Registrar Influence on the Domain Security Posture of the Forbes Global 2000

In the 2021 Domain Security Report, we analyzed the trend of domain security adoption with respect to the type of domain registrar used, and found that 57% of Global 2000 organizations use consumer-grade registrars with limited protection against domain and DNS hijacking, distributed denial of service (DDoS), man-in-the-middle attacks (MitM), or DNS cache poisoning. On average, the adoption of domain security controls is two times higher for enterprise-class registrars than for those using consumer-grade registrars. more

A Three-Step Process to Chase Compulsive Domain Brand Squatters

Domain brand squatting can be defined as the unauthorized or dishonest use of a brand or company identifiers in domain names. It is often linked to the use of look-alike domains in bad faith, and we see it all the time. The threat actors behind these domains are called different names, though a prevalent one would be “typosquatters.” The Hot on the Trail of Compulsive Brand Squatters webinar showcased how these people are infiltrating the Internet. The first page of PhishTank’s valid phish search alone as of this writing tells us that domain brand squatting is a real and present danger. more

Why Domain Security Is Your First Line of Defense to Mitigate Phishing Attacks

According to the Cybersecurity and Infrastructure Security Agency (CISA), most cyberattacks, including ransomware and business email compromise, begin with phishing. Although losses due to ransomware now exceed billions annually, most ransomware protection and response measures don't protect against the most common phishing attacks. Established research shows that phishing attacks most commonly occur from a maliciously registered, confusingly similar domain name, a compromised or hijacked legitimate domain name, or via email header spoofing. more

Key Findings from the 2021 Domain Security Report

With cybercrime on the rise, companies in 2021 have experienced increased ransomware attacks, business email compromise (BEC), phishing attacks, supply chain attacks, and online brand and trademark abuse. While domain cyber risk is rising, the level of action being taken by Forbes Global 2000 companies to improve their domain security posture has remained unchanged, leaving these companies exposed to even more risk. The risk of not addressing your domain security can be catastrophic. more

What Is the Domain Name Expiry Cycle and Why Should You Know About It?

Domain names are registered by the thousands every day. In July 2021, 236,336 domains were newly registered daily on average across all top-level domains (TLDs). Tens of thousands were also newly expired. Other months could be just as busy. "Newly registered" and "newly expired." Those are two terms I often get questions about. Newly registered domains are domains that someone just reserved, typically through a registrar or web hosting company. Newly expired domains, meanwhile, are those domains that someone had reserved but decided to let go for one reason or another. more

To Block or Not to Block?

Domain blocking mechanisms are an important element of an organization's defensive domain strategy. With the introduction of the New Generic Top-Level Domain (gTLD) Program by the Internet Corporation for Assigned Names and Numbers (ICANN) in 2013, brand owners were faced with a new challenge -- protecting their marks without overburdening their budgets. Defensive domain registrations were and still are an effective way in which a brand can protect itself in domain namespaces.  more

Your Cybersecurity is Only as Strong as Your Weakest Vendor

Managing the risk of third parties has become a compliance focus for many large organizations. Companies even work with third-party service providers and external vendors just to manage this risk. The recent SolarWinds attack escalates the critical need for chief compliance officers to collaborate with their business counterparts to identify and mitigate potentially unknown threats that lie within third-party supply chains. Yet how can companies manage this risk when it's not if but when you're attacked? more

Four-Pronged Approach to Keep Your Domain Names and DNS Secure from Cyberattacks

Domain names, domain name systems (DNS), and digital certificates are fundamental components of the most important applications that enable your company to conduct business - including your website, email, voice-over IP, and more. However, these vital applications are being attacked with an increasingly high level of sophistication and severity. more

Multistakeholderism Is Working: A Short Series of Articles

I was in a conversation with a close friend the other day, you know the kind where you have been friends for so long that you have endured each other experimenting with changed politics, evolving religion, and if you are unlucky, flirtations with multilevel marketing. We were discussing politics that day, which is not unusual given our ancient friendship and the recent change at the helm of the United States. more

Brexit Done: What Does It Mean for an Online Presence?

On January 1, 2021, the United Kingdom officially ended the transition period and is no longer subject to European Union rules. The U.K. had been part of the EU for 47 years, or almost two generations. Comprehending the impact, the changes, the new ruling, and compliance will take some time. But in a world where online shopping, online banking, and communication is growing at lightning speed, we need clarity on key digital assets - the basic domain name. more

News Briefs

i2Coalition and The Domain Name Association Announce Their Intent to Merge

Verisign Extends COVID-19 Wholesale Restore Fee Waiver

Nominet, the .UK Operator Says Its Domain Dispute Resolution Service Has Saved £180 Million to Date

New Zealand’s Domain Name Commission Wins Appeal in Lawsuit Against US DomainTools

GrubHub Accused of Cybersquatting Thousands of Restuarant Domain Names

WIPO Reports Cybersquatting Cases Grew by 12% Reaching New Records in 2018

CENTR Publishes a Paper on Domain Name Registries and Online Content

Neglected Domain Renewals Increasingly Scooped Up by Crooks for Credit Card Stealing Purposes

U.S. Government Extends Its Cooperative Agreement With Verisign, Green Lights .Com Price Increase

Special Interests Circulating Draft Legislation to Cut Short ICANN’s Whois Policy Process

The .EU Top-Level Domain Facing Radical Shake Up as a Result of the Proposed New European Regulation

ICANN Files Legal Action Against Domain Registrar for Refusal to Collect WHOIS Data

A Short-Term Suspension of GDPR Enforcement on WHOIS May Be Necessary, Says U.S. Government

ICANN Releases Temporary WHOIS Specification Plan for GDPR Compliance With Deadline Two Weeks Away

ICANN CEO “Cautiously Optimistic” EU to Provide Clear Guidance for Domain Industry GDPR Compliance

Microsoft, Facebook and Others Demand ICANN Take a Closer Look at Questionable Registrars

EFF Warns ICANN Not to Engage in Censorship, Says It Should Stick to Technical Role

Dell Loses Key Customer Support Domain Name for a Month, Site Exposed to Questionable Content

Cycling Legend Greg LeMond Sues Cybersquatters Upward of $6.6 Million

Russian Interference More Vigorous than Assumed, Over 39 States Targeted During Election

Most Viewed

Most Commented

MarkMonitor Updates – Sponsor

MarkMonitor Releases New gTLD Quarterly Report for Q2 2021

We’re happy to deliver this insight collection on Q2 2021, including a deep dive into the electric vehicle (EV) market and its crossover into the new gTLD and .brand space, building upon analysis from our recent 'The Road Ahead: Sustainable Vehicles Today and in the Future' reports. more

Examining Domain Name Brand Protection Strategies, Risk Management Using Arbitration Data (Report)

Our latest report examines a decade of domain case data from Darts-ip against the global Domain Name System (DNS). We identify trends in arbitration activity levels through our data-driven analysis, analyze key metrics to inform successful defensive registration strategies, and highlight threats according to their risk factors. more

MarkMonitor Releases New gTLD Quarterly Report for Q1 2021

The Q1 2021 New gTLD Quarterly Report from our MarkMonitor team examines .kpmg usage, new gTLD Alexa.com rankings, recent launch analyses, and potential policy effects on .brand 'next round' applicants. more

MarkMonitor Releases New gTLD Quarterly Report for Q4 2020

In our latest New gTLD Quarterly Report for the fourth quarter of 2020, we're pleased to provide a collection of articles about Q4 2020 topical registration activity, launch information, DNS abuse, .brand news and notes and industry meeting updates. more

MarkMonitor Releases New gTLD Quarterly Report for Q3 2020

MarkMonitor today released its latest issue of the New gTLD Quarterly Report for the third quarter of 2020 with particular focus on the innovations made by Registry Operators, including the newest example of a domain product with significant security benefits. more

MarkMonitor Releases New gTLD Quarterly Report for Q2 2020

MarkMonitor today released its latest issue of the New gTLD Quarterly Report for the second quarter of 2020, including a particular focus on registration trends during the pandemic. more

Industry Updates

Participants – Random Selection