In every fourth company from the Fortune-500 list, including such IT giants as Amazon, Microsoft and Apple, there are currently subdomains that are quite vulnerable to cyber fraud attacks.Subdomain (subdomain) This is a domain that is part of a higher-level domain. A study conducted by the cyber security service of the company CyberInt shows that clients of companies from the Fortune-500 list are at risk due to vulnerabilities of abandoned subdomains of these companies, which can be used as phishing sites to obtain personal information and credentials.

Every day about 236 million users visit abandoned subdomains of 96% of companies from the list of Fortune-500. This means that they are vulnerable to organized phishing attempts. 25% of vulnerable subdomains belong to the top half of the Fortune-100 list.

Potential victims can get to dangerous sites by trusting the reputation and advertising campaigns of brands from the Fortune-500 list. In the end, this leads to losses of the companies themselves and revenue losses due to the outflow of customers. In addition, due to the fact that the EU currently has a general and rather strict legislation in the field of personal data protection, such vulnerabilities expose companies to legal risks and fines from European regulatory authorities.

Comments Itay Yankowski, representative of CyberInt: "More than 100 Fortune-500 companies, including a number of well-known corporations such as Microsoft, literally closing their eyes, go straight into the hands of cyber scammers. If they do not fix this problem, they risk incurring significant losses, losing the trust of consumers and investors, and receiving serious fines from the EU for failing to provide adequate protection for their subdomains.

Source: CyberInt

Photo: shutterstock