COMPANIES AND CUSTOMERS AT RISK FROM SUBDOMAIN HIJACKING
Fraudulent websites on legitimate subdomains with the look and feel of genuine websites create a false sense of safety to lure users into phishing—malware, illegal content, and more. Furthermore, email service can be set up on these subdomains that bypasses email fraud mitigations. Even the most security-conscious users can be fooled into giving away their personal credentials, or employees could succumb to clicking malicious links that provide a gateway for criminals to infiltrate a company’s infrastructure.
Malicious cybercriminals diligently monitor the internet for publicly available information on domain name system (DNS) zone records to carry out subdomain hijacking, where an attacker gains control of a legitimate subdomain that’s no longer in use, and cleverly exploit the forgotten or misconfigured DNS records—known as “dangling DNS”—to display their own content. Innocent web users land on these subdomains loaded with the criminal’s illegitimate content, all without the criminal infiltrating an organization’s infrastructure or third-party service account.
VISIBILITY AND CONTEXTUALIZED ALERTS
At CSC, we understand that it’s a challenge for companies to account for all their digital assets, and recognize which ones are critical, functional, or redundant (therefore no longer required). Our Subdomain Monitoring solution not only alerts you when changes to your zones are detected, but also provides you context so you can make informed decisions and take appropriate action to purge unused zone records to prevent a subdomain hijack.
Our Subdomain Monitoring solution includes:
Daily monitoring of your CSC-managed DNS records
A system to clean up legacy records over time
Alerts for new instances of active zones becoming inactive so you can assess if the zone needs to be purged or a content delivery issue needs to be resolved
Integration with DomainSecSM, our cyber intelligence tool
WE'RE READY TO TALK
Our specialists are ready to answer your questions about Subdomain Monitoring.