{"id":9210,"date":"2020-10-07T13:10:57","date_gmt":"2020-10-07T17:10:57","guid":{"rendered":"https:\/\/www.cscdbs.com\/blog\/?p=9210"},"modified":"2021-11-09T14:25:36","modified_gmt":"2021-11-09T19:25:36","slug":"us-election-web-fraud","status":"publish","type":"post","link":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/","title":{"rendered":"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security"},"content":{"rendered":"\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"536\" src=\"https:\/\/www.cscdbs.com\/blog\/wp-content\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-1024x536.jpg\" alt=\"\" class=\"wp-image-9262\" srcset=\"https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-1024x536.jpg 1024w, https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-300x157.jpg 300w, https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-768x402.jpg 768w, https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image.jpg 1200w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<i><br \/> By Vin D&#8217;angelo, Quinn Taggart, and Sue Watts<\/i> <span style=\"padding-left:100px\"><strong>Share this post <\/strong>\n<a class=\"social\" id=\"linkedinShare\" href=\"https:\/\/www.linkedin.com\/sharing\/share-offsite\/?url=\"><img decoding=\"async\" src=\"\/blog\/wp-content\/uploads\/2019\/06\/LinkedIn18x20.png\" style=\"padding-left:5px\"\/><\/a>\n<a class=\"social\" id=\"twitterShare\" href=\"https:\/\/twitter.com\/intent\/tweet?url=\"><img decoding=\"async\" src=\"\/blog\/wp-content\/uploads\/2019\/06\/Twitter18x20.png\"\/><\/a>\n<a class=\"social\" id=\"facebookShare\" href=\"https:\/\/www.facebook.com\/sharer\/sharer.php?u=\"><img decoding=\"async\" src=\"\/blog\/wp-content\/uploads\/2019\/06\/Facebook18x20.png\"\/><\/a>\n\n\n\n<p>The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are prone to domain spoofing tactics. This makes them a potential target for hackers looking to spread disinformation ahead of the election, and criminals who want to take advantage of voter intentions through domain spoofing, domain name and domain name system (DNS) hijacking, and phishing. Our findings show major risks that potentially lead to manipulation of web properties that voters rely on for information and donations. Additionally, the websites <a href=\"http:\/\/joebiden.com\">joebiden.com<\/a> and <a href=\"http:\/\/www.donaldjtrump.com\" target=\"_blank\" rel=\"noreferrer noopener\">donaldjtrump.com<\/a> fit into this same risk profile.<\/p>\n\n\n\n<p><strong>When a bad actor takes advantage of these vulnerabilities, below are some of the things that can happen:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Subdomains (domain shadowing) can be used to launch phishing and misinformation scams.<\/li><li>Nameservers can be modified (DNS hijacking) to launch phishing and misinformation scams.<\/li><li>Existing subdomains can be used at cloud providers to launch phishing and misinformation scams.<\/li><li>Email can be intercepted, then used for gaining intelligence, or network infiltration.<\/li><li>New secure sockets layer (SSL) digital certificates can be created by bad actors to legitimize their efforts.<\/li><\/ul>\n\n\n\n<p>In June, CSC revealed in the <a href=\"https:\/\/www.cscdbs.com\/en\/resources-news\/domain-security-report\/\">2020 Domain Security Report<\/a> that 83% of Forbes Global 2000 companies are at greater risk of domain name and DNS hijacking because they have not adopted basic domain security measures like registry lock. We thought it would be valuable to see if these same security issues were magnified for U.S. election-related web properties.<\/p>\n\n\n\n<p>Using SimilarWeb, CSC identified close to 1,000 \u201coutgoing\u201d and \u201creferral\u201d domains for the period of August 1- August 30, 2020 associated with <a href=\"http:\/\/joebiden.com\">joebiden.com<\/a> and <a href=\"http:\/\/donaldjtrump.com\">donaldjtrump.com<\/a>. Essentially, we observed which websites are part of the presidential election ecosystem. These types of websites include:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Major global news media sites<\/li><li>Political websites<\/li><li>Political donation websites<\/li><\/ul>\n\n\n\n<p><strong>CSC then applied its proprietary tools to identify the adoption of key domain security measures across the presidential election ecosystem. Highlights from our findings include:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Over 90%<\/strong> of these web properties are not using registry locks to protect their domains from domain and DNS hijacking that can lead to phishing attacks, network breaches, email compromise, and other malicious activity.<\/li><li>The above mentioned is likely because <strong>over 75%<\/strong> of these election-related domains are registered with retail-grade domain registrars (vs enterprise-level registrars) that generally do not provide this advanced security protocol or a <a href=\"https:\/\/www.cscdbs.com\/en\/domain-security\/\">defense in depth approach<\/a>.<\/li><\/ul>\n\n\n\n<p>We also researched misspelled .COM domains (i.e., typo domains), related to <a href=\"http:\/\/joebiden.com\">joebiden.com<\/a> and <a href=\"http:\/\/www.donaldjtrump.com\" target=\"_blank\" rel=\"noreferrer noopener\">donaldjtrump.com<\/a>. As part of our process, we checked to see which of these domains were registered, and we analyzed their registrant and registrar details and domain registration dates. Last, we observed whether they were configured for email and how they were being used.<\/p>\n\n\n\n<p><strong>Our research also showed that, of the typo domains related to joebiden.com and donaldjtrump.com:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>60%<\/strong> are still available for registration, thereby posing future threats.<\/li><li>Additionally, <strong>more than a third<\/strong> of those presidential candidate typo domains are linked to third parties. Therefore, it is our interpretation that only a handful of typo domains are legitimately owned by the campaigns themselves.<\/li><li>What is concerning is that, of the of domains linked to third parties, <strong>nearly 70%:<\/strong><ul><li>Are configured to send and receive emails (have MX records configured)<\/li><\/ul><ul><li>Were registered in January of 2020 or after<ul><li>This trend is typical with high profile global events, and CSC often sees a surge in domain spoofing leading up to and during an event (e.g., <a href=\"https:\/\/www.cscdbs.com\/blog\/coronavirus-online-threats-part-1\/\">COVID-19-related domain spoofing<\/a>).<\/li><\/ul><\/li><\/ul><\/li><li>Are using privacy protection<ul><li>As a point of reference, CSC\u2019s managed corporations only use privacy or proxy services for about <strong>2%<\/strong> of their domain portfolio. This tells us that the true owners of these misspelled domains may have some nefarious intentions.<\/li><\/ul><\/li><\/ul>\n\n\n\n<p><strong>Furthermore, in terms of the domains being used by third parties:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Nearly 40%<\/strong> are pointing to advertising-related pages<\/li><li><strong>20%<\/strong> are pointing to what appears to be destinations that have malware associated with them<\/li><li><strong>10%<\/strong> appear to be promoting campaign-related content and materials<\/li><\/ul>\n\n\n\n<p><a href=\"https:\/\/hello.global.ntt\/-\/media\/ntt\/global\/insights\/gtic-monthly-threat-report\/gtic-monthly-threat-report-september-2020.pdf\">NTT&#8217;s September Monthly Threat Report<\/a> spoke of similar concerns related to <a href=\"https:\/\/www.telegraph.co.uk\/business\/business-reporter\/secure-by-design-approach-digital-transformation\/\">ransomware being a significant U.S. election threat.<\/a> DNS, domains, and email are the means of malware distribution, so more oversight in these areas could help reduce the impact. Companies like <a href=\"https:\/\/www.spamhaus.org\">Spamhaus<\/a> have also discussed the <a href=\"https:\/\/www.spamhaus.org\/news\/article\/797\/the-current-state-of-domain-hijacking-and-a-specific-look-at-the-ongoing-issues-at-godaddy\">increased threat of domain name hijacking<\/a>, and have been advocating for increased oversight in holding domain name registrars to a higher standard. <\/p>\n\n\n\n<p>With the increased rates and serious repercussions that come from all of these aforementioned attacks, CSC is taking a strong stance advocating for security transformation. We strive to be the most security conscious domain name registrar for enterprises and important organizations around the world. We are the trusted provider of choice for the Forbes Global 2000 and are the only enterprise-class registrar with a comprehensive set of solutions focused on defending businesses from targeted threat vectors to their domain names, DNS, and digital certificates. Moreover, CSC detects and mitigates online brand abuse, infringements, and fraud with the latest machine analysis and scoring technology to perform global enforcement, including takedowns and advanced techniques in internet blocking.<\/p>\n\n\n<p><\/p>\n<p><\/p><\/span>","protected":false},"excerpt":{"rendered":"<p>By Vin D&#8217;angelo, Quinn Taggart, and Sue Watts Share this post The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security [&hellip;]<\/p>\n","protected":false},"author":13,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[547,548,521],"tags":[],"class_list":["post-9210","post","type-post","status-publish","format-standard","hentry","category-domain-management","category-domain-security","category-send-email"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security | CSC<\/title>\n<meta name=\"description\" content=\"The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are prone to domain spoofing tactics. This makes them a potential target for hackers looking to spread disinformation ahead of the election, and criminals who want to take advantage of voter intentions through domain spoofing, domain name and domain name system (DNS) hijacking, and phishing. Our findings show major risks that potentially lead to manipulation of web properties that voters rely on for information and donations. Additionally, the websites joebiden.com and donaldjtrump.com fit into this same risk profile.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security | CSC\" \/>\n<meta property=\"og:description\" content=\"The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are prone to domain spoofing tactics. This makes them a potential target for hackers looking to spread disinformation ahead of the election, and criminals who want to take advantage of voter intentions through domain spoofing, domain name and domain name system (DNS) hijacking, and phishing. Our findings show major risks that potentially lead to manipulation of web properties that voters rely on for information and donations. Additionally, the websites joebiden.com and donaldjtrump.com fit into this same risk profile.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/\" \/>\n<meta property=\"og:site_name\" content=\"Digital Brand Services Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/corporationserviceco\" \/>\n<meta property=\"article:published_time\" content=\"2020-10-07T17:10:57+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-11-09T19:25:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.cscdbs.com\/blog\/wp-content\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-1024x536.jpg\" \/>\n<meta name=\"author\" content=\"Digital Brand Services Marketing\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@cscdbs\" \/>\n<meta name=\"twitter:site\" content=\"@cscdbs\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Digital Brand Services Marketing\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/\"},\"author\":{\"name\":\"Digital Brand Services Marketing\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#\\\/schema\\\/person\\\/c8385131857f2e60ca2a58d416f2404d\"},\"headline\":\"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security\",\"datePublished\":\"2020-10-07T17:10:57+00:00\",\"dateModified\":\"2021-11-09T19:25:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/\"},\"wordCount\":888,\"publisher\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/10\\\/10.8.2020-DBS-Blog-Image-1024x536.jpg\",\"articleSection\":[\"Domain Management\",\"Domain Security\",\"Send email\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/\",\"url\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/\",\"name\":\"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security | CSC\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/10\\\/10.8.2020-DBS-Blog-Image-1024x536.jpg\",\"datePublished\":\"2020-10-07T17:10:57+00:00\",\"dateModified\":\"2021-11-09T19:25:36+00:00\",\"description\":\"The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are prone to domain spoofing tactics. This makes them a potential target for hackers looking to spread disinformation ahead of the election, and criminals who want to take advantage of voter intentions through domain spoofing, domain name and domain name system (DNS) hijacking, and phishing. Our findings show major risks that potentially lead to manipulation of web properties that voters rely on for information and donations. Additionally, the websites joebiden.com and donaldjtrump.com fit into this same risk profile.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/#primaryimage\",\"url\":\"https:\\\/\\\/cscwebcontentstorage.blob.core.windows.net\\\/cscmarketing-cscdbs-media\\\/uploads\\\/2020\\\/10\\\/10.8.2020-DBS-Blog-Image.jpg\",\"contentUrl\":\"https:\\\/\\\/cscwebcontentstorage.blob.core.windows.net\\\/cscmarketing-cscdbs-media\\\/uploads\\\/2020\\\/10\\\/10.8.2020-DBS-Blog-Image.jpg\",\"width\":1200,\"height\":628},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/us-election-web-fraud\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/\",\"name\":\"Digital Brand Services Blog\",\"description\":\"Domains, new gTLDs, brand protection, security &amp; trademark news\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#organization\",\"name\":\"CSC Digital Brand Services\",\"url\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/cscwebcontentstorage.blob.core.windows.net\\\/cscmarketing-cscdbs-media\\\/uploads\\\/2018\\\/06\\\/cropped-dbs_small.gif\",\"contentUrl\":\"https:\\\/\\\/cscwebcontentstorage.blob.core.windows.net\\\/cscmarketing-cscdbs-media\\\/uploads\\\/2018\\\/06\\\/cropped-dbs_small.gif\",\"width\":200,\"height\":200,\"caption\":\"CSC Digital Brand Services\"},\"image\":{\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/corporationserviceco\",\"https:\\\/\\\/x.com\\\/cscdbs\",\"https:\\\/\\\/www.linkedin.com\\\/showcase\\\/csc-digital-brand-services\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/#\\\/schema\\\/person\\\/c8385131857f2e60ca2a58d416f2404d\",\"name\":\"Digital Brand Services Marketing\",\"sameAs\":[\"https:\\\/\\\/www.cscdbs.com\\\/blog\\\/\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security | CSC","description":"The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are prone to domain spoofing tactics. This makes them a potential target for hackers looking to spread disinformation ahead of the election, and criminals who want to take advantage of voter intentions through domain spoofing, domain name and domain name system (DNS) hijacking, and phishing. Our findings show major risks that potentially lead to manipulation of web properties that voters rely on for information and donations. Additionally, the websites joebiden.com and donaldjtrump.com fit into this same risk profile.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/","og_locale":"en_US","og_type":"article","og_title":"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security | CSC","og_description":"The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are prone to domain spoofing tactics. This makes them a potential target for hackers looking to spread disinformation ahead of the election, and criminals who want to take advantage of voter intentions through domain spoofing, domain name and domain name system (DNS) hijacking, and phishing. Our findings show major risks that potentially lead to manipulation of web properties that voters rely on for information and donations. Additionally, the websites joebiden.com and donaldjtrump.com fit into this same risk profile.","og_url":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/","og_site_name":"Digital Brand Services Blog","article_publisher":"https:\/\/www.facebook.com\/corporationserviceco","article_published_time":"2020-10-07T17:10:57+00:00","article_modified_time":"2021-11-09T19:25:36+00:00","og_image":[{"url":"https:\/\/www.cscdbs.com\/blog\/wp-content\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-1024x536.jpg","type":"","width":"","height":""}],"author":"Digital Brand Services Marketing","twitter_card":"summary_large_image","twitter_creator":"@cscdbs","twitter_site":"@cscdbs","twitter_misc":{"Written by":"Digital Brand Services Marketing","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/#article","isPartOf":{"@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/"},"author":{"name":"Digital Brand Services Marketing","@id":"https:\/\/www.cscdbs.com\/blog\/#\/schema\/person\/c8385131857f2e60ca2a58d416f2404d"},"headline":"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security","datePublished":"2020-10-07T17:10:57+00:00","dateModified":"2021-11-09T19:25:36+00:00","mainEntityOfPage":{"@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/"},"wordCount":888,"publisher":{"@id":"https:\/\/www.cscdbs.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/#primaryimage"},"thumbnailUrl":"https:\/\/www.cscdbs.com\/blog\/wp-content\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-1024x536.jpg","articleSection":["Domain Management","Domain Security","Send email"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/","url":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/","name":"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security | CSC","isPartOf":{"@id":"https:\/\/www.cscdbs.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/#primaryimage"},"image":{"@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/#primaryimage"},"thumbnailUrl":"https:\/\/www.cscdbs.com\/blog\/wp-content\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image-1024x536.jpg","datePublished":"2020-10-07T17:10:57+00:00","dateModified":"2021-11-09T19:25:36+00:00","description":"The risks of fraud and disinformation in the U.S. election process have been hiding in plain sight. CSC\u2019s new research finds that a large majority of web domains closely linked to the campaign websites for Joe Biden and Donald Trump lack basic domain security protocols and are prone to domain spoofing tactics. This makes them a potential target for hackers looking to spread disinformation ahead of the election, and criminals who want to take advantage of voter intentions through domain spoofing, domain name and domain name system (DNS) hijacking, and phishing. Our findings show major risks that potentially lead to manipulation of web properties that voters rely on for information and donations. Additionally, the websites joebiden.com and donaldjtrump.com fit into this same risk profile.","breadcrumb":{"@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/#primaryimage","url":"https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image.jpg","contentUrl":"https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2020\/10\/10.8.2020-DBS-Blog-Image.jpg","width":1200,"height":628},{"@type":"BreadcrumbList","@id":"https:\/\/www.cscdbs.com\/blog\/us-election-web-fraud\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.cscdbs.com\/blog\/"},{"@type":"ListItem","position":2,"name":"U.S. Election-Related Web Properties Prone to Fraud and Misinformation Due to Lack of Domain Security"}]},{"@type":"WebSite","@id":"https:\/\/www.cscdbs.com\/blog\/#website","url":"https:\/\/www.cscdbs.com\/blog\/","name":"Digital Brand Services Blog","description":"Domains, new gTLDs, brand protection, security &amp; trademark news","publisher":{"@id":"https:\/\/www.cscdbs.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.cscdbs.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.cscdbs.com\/blog\/#organization","name":"CSC Digital Brand Services","url":"https:\/\/www.cscdbs.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.cscdbs.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2018\/06\/cropped-dbs_small.gif","contentUrl":"https:\/\/cscwebcontentstorage.blob.core.windows.net\/cscmarketing-cscdbs-media\/uploads\/2018\/06\/cropped-dbs_small.gif","width":200,"height":200,"caption":"CSC Digital Brand Services"},"image":{"@id":"https:\/\/www.cscdbs.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/corporationserviceco","https:\/\/x.com\/cscdbs","https:\/\/www.linkedin.com\/showcase\/csc-digital-brand-services\/"]},{"@type":"Person","@id":"https:\/\/www.cscdbs.com\/blog\/#\/schema\/person\/c8385131857f2e60ca2a58d416f2404d","name":"Digital Brand Services Marketing","sameAs":["https:\/\/www.cscdbs.com\/blog\/"]}]}},"_links":{"self":[{"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/posts\/9210","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/users\/13"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/comments?post=9210"}],"version-history":[{"count":14,"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/posts\/9210\/revisions"}],"predecessor-version":[{"id":9290,"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/posts\/9210\/revisions\/9290"}],"wp:attachment":[{"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/media?parent=9210"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/categories?post=9210"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cscdbs.com\/blog\/wp-json\/wp\/v2\/tags?post=9210"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}