Imitation is often the clearest sign your brand is making an impact. Whether through a viral moment or a market-defining launch, your success doesn’t just capture attention. It sets the pace, inspiring both competitors and collaborators to follow your lead.But when imitation crosses the line into online brand impersonation, the effects shift from flattering to potentially disastrous. Deceptive...

In the world of domain ownership, the need for disputes and enforcement can occur. But how should they be handled? What’s the difference between Uniform Domain-Name Dispute-Resolution Policy (UDRP) domain takeovers and a domain takedowns? Let’s take a closer look at the processes.What Is a UDRP Domain Takeover? Established by the Internet Corporation for Assigned Names and Numbers, UDRP is the...

Domains remain one of the most exploited tools in the hands of threat actors, fueling phishing schemes and victim manipulation. In our latest Quarterly Threat Trends & Intelligence Report, we uncover how attackers are weaponizing Legacy Generic (gTLD) and Country Code (ccTLD) top-level domains — along with HTTPS and free security certificates — to infiltrate and target enterprises. Top-level...

Look-alike domains remain some of the most consistent elements of cyber-attacks targeting organizations. At a high-level, there are two ways to mitigate the threat of a look-alike domain: Remove the threat completely by taking it offline, or block attacks on your users by implementing IT security controls. If we dissect the construction of a look-alike domain, we see where each step in its...

Every year, cybercriminals spin up hundreds of thousands of look-alike domains — tiny, deceptive variations of real web addresses that exist purely to trick people and steal money. A look-alike domain is a nearly identical domain name, registered with intent to impersonate a legitimate brand. In this post we’ll show how domain names power online communication, break down the anatomy of these...

Malicious domains play a central role in a wide range of cyberattacks that can severely damage a brand’s reputation. Spoofed domains are often quick and inexpensive to create, making them effective tools for launching phishing campaigns and distributing malicious emails. To identify and respond to domain-based threats targeting your organization, security teams must adopt advanced, well-defined...

What's the importance of bandwidth speed, capacity, and usage? Learn why monitoring these key metrics can help meaintain peak network performance.

Since 2015, PhishLabs (now Fortra Brand Protection) has tracked how threat actors abuse HTTPS or SSL certs. In particular, threat actors often use HTTPS on their phishing sites to add a layer of legitimacy, better mimic the target site in question, and reduce being flagged or blocked from some browsers. In 2014, threat actors hit a significant milestone in this usage when more than 50% of phishing...

You encounter social engineering tactics every day, often without even noticing them.From an information security perspective, Wikipedia defines social engineering as the psychological manipulation of people into performing actions or revealing confidential information. While that definition is accurate, it only captures part of the picture. Social engineering extends beyond cybersecurity and...