Business Wire

New CSC Research Finds Over 90% of Websites Linked to Donald Trump and Joe Biden Campaigns at Risk for Potential Redirection, Disinformation, and Data Theft

8.10.2020 13:00:00 EEST | Business Wire | Press release

Share

CSC, a world leader in business, legal, tax, and domain security, today released new research from their Digital Brand Services (DBS) division that reveals areas of risk for prominent election-related websites. The research indicates that web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are being targeted for disinformation activities such as domain spoofing, and threats including domain name and domain name system (DNS) hijacking, and phishing.

On the heels of its recent Forbes Global 2000 research, CSC is seeing major risks related to the manipulation of web properties that voters rely on for information and donations. Findings show that over 90% of these web properties are not using registry locks to protect their domains from domain and DNS hijacking that can lead to phishing attacks, network breaches, and email compromise.

“As noted in our previous research, we’ve consistently seen domains emerge as a threat vector for enterprises, and an area that is continuously overlooked in cyber security. Due to the sensitivity and importance of the U.S. election process, domain security remains a major vulnerability for the potential of foreign interference, fraud, and misinformation,” says Mark Calandra, executive vice president for CSC DBS. “As an organization with the most visibility into the domain landscape, we advocate for the sanctity of voter trust and encourage both presidential candidates and other websites in the electoral ecosystem to prioritize domain security on their websites to ensure security and build confidence.”

"We have reached the point where awareness is not enough. Those responsible for managing domain registrations, including registrars and hosting companies, need to have an actionable plan that is aligned with best practices. Additionally, experiences must be shared between those within the industry for the good of the wider internet community," said Matthew Stith, industry liaison at Spamhaus. “Without this commitment, users will be open to continued manipulation and fraud."

In April of 2020 when domain names were at the center of many COVID-19 related fraud schemes, Senators Mazie K. Hirono (D-Hawaii), Cory Booker (D-N.J.), and Maggie Hassan (D-N.H.) called on domain name registrars and hosting sites to combat scams and misinformation. CSC’s research shows that domain security and preventing domain spoofing continue to be an oversight even with top election-related web properties. Our research shows that more than 75% of these election-related domains are using retail-grade domain registrars, which do not provide advanced security protocols.

Our research also showed that, of the typo domains related to joebiden.com and donaldjtrump.com, 60% are still available for registration, thereby posing future threats. Additionally, more than a third of those presidential candidate typo domains are linked to third parties; of that one third, nearly 70%:

  • Are configured to send and receive emails, which can be used to lure donors to phishing sites
  • Were registered in 2020 leading up to the November election
  • Disguise the owner’s identity behind proxy or privacy services

With cyber criminals subverting activities on these websites to disseminate misinformation or commit fraud against web visitors, there is also the threat of ransomware. Simon Chassar, chief revenue officer at NTT Ltd.’s Security division states, "NTT's September Monthly Threat Report identified ransomware as a significant threat to the U.S. election infrastructure. With DNS, domains, and email being a potential vehicle to distribute malicious content, our NTT Ltd. Security division suggests focus in this area, ensuring it is secure by design."

For additional details on these findings, visit the CSC blog “U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security.”

Note: CSC aggregated this data using SimilarWeb.com for the period of August 1 – August 30, 2020.

About CSC

CSC is the trusted provider of choice for the Forbes Global 2000 and the 100 Best Global Brands® in enterprise domain names, domain name system (DNS), digital certificate management, as well as digital brand and fraud protection. As global companies make significant investments in their security posture, CSC can help them understand known security blind spots that exist and help them secure their digital assets. By leveraging CSC’s proprietary solutions, companies can get secure to protect against cyber threats to their online assets, helping them avoid devastating revenue loss, brand reputation damage, or significant financial penalties because of policies like the General Data Protection Regulation (GDPR). CSC also provides online brand protection—the combination of online brand monitoring and enforcement activities—taking a holistic approach to digital asset protection, along with fraud protection services to combat phishing. Headquartered in Wilmington, Delaware, USA, since 1899, CSC has offices throughout the United States, Canada, Europe, and the Asia-Pacific region. CSC is a global company capable of doing business wherever our clients are—and we accomplish that by employing experts in every business we serve. Visit cscdbs.com.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

Contact information

For more information:
Christine Blake
W2 Communications
703-877-8114
CSC@w2comm.com
CSC® News Room

About Business Wire

For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Accertify's Q2 Global Air Travel Fraud Report Finds Fraud Pressure Intensifying Across Middle East and Africa15.7.2026 14:00:00 EEST | Press release

Accertify, a leading fraud decisioning provider whose Predictive Yes Platform helps merchants say yes to more good customers, more revenue, and more growth, today announced the release of its Global Air Travel Fraud Report: Q2 2026, a quarterly analysis examining how fraud pressure varies across global airline markets based on departure city at time of booking. Based on analysis of 132.9 million airline booking transactions processed between April and June 2026, the report evaluates prevented fraud rates across 537 departure cities that each processed at least 10,000 transactions during the quarter, providing airlines with a data-driven view of where Accertify's Predictive Yes platform intervened most frequently at booking. The Q2 findings reveal that fraud pressure continues to vary significantly by market, with the most notable shift occurring across the Middle East and Africa. The region's average prevented fraud rate more than doubled quarter over quarter, from 0.95% to 2.03% — the

Forrester’s 2027 Budget Planning Guides: After A Year Of Caution, Business And Tech Leaders Are Ready To Invest Again15.7.2026 12:00:00 EEST | Press release

According to Forrester’s (Nasdaq: FORR) 2027 Budget Planning Guides, business and technology leaders are approaching 2027 with renewed confidence as they increasingly accept volatility as a permanent feature of the business environment. After a year of more cautious spending, more than 80% of leaders expect their budgets to increase over the next 12 months, with as many as one-quarter anticipating growth of 10% or more. But planning in the age of AI demands more than bigger budgets: Increasing investment without modernizing operating models, strengthening data foundations, and improving AI readiness will only accelerate fragmented data, duplicated work, and technical debt. To realize AI’s full potential, leaders must rethink their strategies and prioritize investments in operational foundations, governance, and experimentation that drive tangible outcomes. This year, optimism is widespread across functions: 82% of technology decision-makers and 91% of marketers expect budget increases

Post-Quantum’s Algorithm - Classic McEliece - Achieves Global ISO Standardization to Protect the World From Quantum Cyber Attack15.7.2026 11:00:00 EEST | Press release

It’s proven that today’s encryption is vulnerable to attack by a sufficiently mature quantum computer running Shor’s algorithm - a catastrophic event commonly known as Q-Day. Even before such a cryptographically relevant quantum computer emerges it is known that adversaries are stealing encrypted data now, which can be decrypted later - also known as Harvest Now, Decrypt Later (HNDL). Google’s recent use of Artificial Intelligence (AI) to optimise Shor’s algorithm reduces the number of physical qubits required to break today’s encryption, therefore shortening the timeline to Q-Day. This has led prominent experts to estimate today’s encryption may be broken as-soon-as the next three years. It’s against this backdrop that the International Organisation for Standardisation (ISO) has included the Classic McEliece algorithm as part of its standard for Asymmetric Ciphers (ISO/IEC 18033-2). Organisations from ISO’s 177 member states can now upgrade to Classic McEliece using an international s

Thredd Joins The Visa Agentic Ready Programme, Bringing Agent Network Readiness To Issuers Across Europe, Starting With Zilch15.7.2026 10:00:00 EEST | Press release

Thredd, the AI-first issuer processing platform, today announced it has joined the Visa Agentic Ready programme, enabling issuers across Europe to participate in agent-initiated payments without rebuilding their payments infrastructure. Consumer payments platform Zilch will be among the first issuers on the platform to enable agent-initiated payments for its cardholders. As a processor and enabler, Thredd sits at the trust layer of the payments ecosystem. By joining the programme, Thredd is ready to support Visa and its clients as the market moves into agentic commerce. Agentic commerce introduces a new type of payment initiator: An AI agent acting on a cardholder's behalf. The core payments principles do not change. Cardholder permission, issuer approval, authentication and fraud monitoring all still apply. What changes is how trust is established and enforced at the point an agent transacts. Taking a Zilch customer as an example, a cardholder might ask an AI agent to find a product w

Surgerii Robotics Announces First European Installation of the SHURUI ® Single-Port Surgical System at Vall d'Hebron University Hospital15.7.2026 10:00:00 EEST | Press release

Surgerii Robotics today announced the first European installation of its SHURUI Single-Port (SP) Surgical System at Vall d'Hebron University Hospital in Barcelona, Spain, one of Europe's leading academic medical centers. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260713209503/en/ The first pediatric procedure performed with the SHURUI SP system was a nephroureterectomy on a twelve-year-old boy whose kidney and ureter had become infected and non-functional due to multiple stones. The SHURUI SP system is CE-marked for adult and pediatric use, making it the only CE-marked single-port robotic surgical system currently indicated for pediatric procedures in Europe. The installation marks an important milestone in the international expansion of Surgerii Robotics and the introduction of the technology into a major European reference center. As part of this collaboration, Vall d'Hebron University Hospital has become the first hos

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye