A Glimpse of Big Telcos’ Domains and Subdomains Footprints

This article has been indexed from CircleID: Cybercrime

Telecommunications companies are a favored cyberattack target. After all, telcos build, control, and operate critical infrastructure that almost everyone uses to communicate. They also store large amounts of sensitive data that could easily be exploited when falling into the wrong hands.

We sought to determine a small portion of the potential attack surface of today’s biggest telcos in terms of revenue using domain intelligence. In particular, we hunted down possible rogue domains and subdomains containing their brand or company names, as some of these could end up being used in phishing attacks.

The Subjects

According to Statista, some of the world’s top telcos based on revenue in 2020 are:

Verizon with a 2020 revenue of US$143.3 billionChina Mobile with a 2020 revenue of US$120.0 billionComcast with a 2020 revenue of US$118.4 billionDeutsche Telekom with a 2020 revenue of US$98.2 billionSoftbank with a 2020 revenue of US$63.9 billionChina Telecom with a 2020 revenue of US$60.5 billionTelefonica with a 2020 revenue of US$59.0 billionAmerica Movil with a 2020 revenue of US$58.1 billion

We used the strings “verizon,” “chinamobile,” “comcast,” “t-mobile,” “softbank,” “chinatelecom,” “telefonica,” and “americamovil” as search terms on Domains & Subdomains Discovery to obtain reduced lists of domains and subdomains containing their brand or company names.

Our Findings

A total of 1,720 domains and subdomains that could serve as potential hosts to phishing pages and malware were recently found for the eight companies. This number is broken down into:

263 domains and subdomains containing the string “verizon” for VerizonSeven domains and subdomains containing the string “chinamobile” for China Mobile1,385 domains and subdomains containing the string “comcast” for Comcast10 domains and subdomains containing the string “t-mobile” for Deutsche TelekomTwo domains and subdomains containing the string “softbank” for Softbank53 domains and subdomains containing the string “telefonica” for TelefonicaNo domains and subdomains containing the strings “chinatelecom” and “americamovil” for China Telecom and America Movil, respectively

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.

Read the original article: A Glimpse of Big Telcos’ Domains and Subdomains Footprints