Anti Spoofing (Brand Security)

If you want protection
against impersonation

We assess the risk of impersonation. Please enter the domain name managed by your company.

Diagnosis Result

Potential impacts in case of impersonation

If a website is impersonated due to phishing scams or domain spoofing, there are risks such as customers and fans falling victim to fraud, the circulation of counterfeit products, and the spread of false information. As a result, there are direct business risks such as a decline in brand image, sluggish product sales, and potential reputational damage caused by the spread of misinformation.

VMC Usage

VMC (Verified Mark Certificate) is a digital certificate that certifies that the BIMI logo is genuine. Without a VMC, you may not be able to use the BIMI logo or your email may not be as effective at preventing spoofing. Obtaining a VMC further increases the credibility of your email.

BIMI/VMC information

BIMI Record Usage

YesNo

BIMI (Brand Indicators for Message Identification) is a system that displays the official logo of the email sender. Without this setting, it becomes difficult to determine whether an email is official, and fake emails are more likely to be trusted. Setting up BIMI makes it easier to spot spoofed emails.

BIMI/VMC information

SPF Record Setting

An SPF record specifies which mail servers are allowed to send emails from your domain. This allows the recipient to verify the authenticity of the sender. Without an SPF record, third parties can send emails using your domain, increasing the risk of spoofing. By setting up an SPF record, you can block emails from unauthorized senders and maintain a reliable email environment.

DMARC Record Setting

YesNo

DMARC (Domain-based Message Authentication, Reporting, and Conformance) is a protocol designed to specify how to handle email messages that fail authentication checks based on SPF and DKIM results. By implementing DMARC, organizations can strengthen their defenses against spoofed emails.
There are three types of DMARC policies.
none (monitor only): Messages that fail authentication are still delivered to the inbox.
quarantine: Messages that fail authentication are delivered to the spam or junk folder.
reject: Messages that fail authentication are rejected entirely and not delivered to the recipient.
DMARC also includes a reporting feature that provides visibility into unauthorized email activity. This enables organizations to implement more effective email security measures.

Brand TLD Usage

A brand TLD (e.g., .gmo) is a system that allows companies and organizations to use their brand name as a top-level domain, creating a unique domain space. It offers high security and greater control over brand management, helping to strengthen online strategies.

Number of similar domains

Similar domains(Display only 10 items)

This shows how many domains are similar to your company's domain (e.g. example.com). For example, if there are domains like examp1e.com (with the number 1) or example.co (.co domain), it is easier for fraudulent websites to be created. The higher the risk of spoofing, the more caution you need to take.

To improve the rank, it is important to strengthen impersonation countermeasures.
Specifically, let's implement the following measures.

Obtain a VMC (Enhance the Trustworthiness of Your BIMI Logo)

Obtain a VMC (Verified Mark Certificate) to officially certify the BIMI logo and enhance email credibility.

BIMI/VMC information

Set Up a BIMI Record (Increase Credibility with an Official Logo)

Make it easier to distinguish from official emails

Configure BIMI for the sending domain to make it easier to distinguish official emails from fraudulent ones.

Change the DMARC policy

Set the DMARC policy to "p=reject" or "p=quarantine" to enable BIMI application.

Display the official logo

Ensure a BIMI-compatible email environment so that the official logo can be displayed.

BIMI/VMC information

Set Up an SPF Record

Prevent the sending of spoofed emails

By configuring the SPF record in the DNS and specifying the mail servers authorized as legitimate senders, you can prevent third parties from unauthorized use of your domain.

Prevent emails from being marked as spam

If SPF is not configured, even legitimate emails may be recognized as "suspicious" by the recipient's system and placed in the spam folder. By setting up SPF, you ensure that legitimate emails are delivered properly.

Use in combination with DMARC

Since SPF alone cannot prevent all cases, combining it with DMARC allows for more precise control over spoofed email policies, ensuring a more effective elimination of fraudulent emails.

Set Up DMARC

Block spoofed emails

By setting DMARC to "p=reject", emails that fail authentication will not be sent, preventing the reception of fraudulent emails.

Reduce the risk of phishing scams

By filtering emails that fail SPF or DKIM authentication into the spam folder, the risk of recipients accidentally opening fraudulent emails can be reduced.

Use the reporting feature to monitor attack activity

By utilizing DMARC's reporting feature, you can identify which emails fail authentication and monitor the presence and trends of spoofing attacks.

Utilize a Brand TLD (Fundamentally Prevent Spoofing)

Acquisition of a dedicated domain

For example, acquiring a dedicated domain like ".gmo" prevents others from registering similar domains, significantly enhancing security.

Reduction of risk rank

Having a brand TLD tends to result in a lower risk rank in search results.

Promote awareness of the official domain

It is important to standardize the official website URL under the brand TLD and inform users that any domain other than this is not official.

Similar Domain Protection (Preventing Phishing Websites)

If your domain is "example.com", registering similar domains such as "example.net" or "examp1e.com" (with the number 1 instead of 'l') can enhance security and prevent misuse.

Regularly check for similar domains

Use a domain monitoring service to check for newly created similar domains.

Delete immediately upon discovery

If a phishing site is detected, submit a deletion request (domain suspension procedure) immediately.

By implementing these measures,
It is possible to improve the risk rank from D (high risk) to A (low risk).
Taking early action is the key to preventing impersonation attacks.

Receive a more detailed impersonation risk diagnosis and countermeasures

Free detailed diagnosis by an analyst

What is

You are struggling with being targeted by numerous impersonation or phishing sites.

You want to check if there are any impersonation or phishing sites.

You are struggling with impersonation accounts on social media.

A customer has reported that counterfeit products are appearing on a marketplace.

You are troubled by domain names being registered without permission by subsidiaries or agencies.

You want to reclaim impersonation or phishing sites.

You are troubled by impersonation using abandoned domain names.

Emails impersonating your company, including phishing attempts, are commonly observed.

Service List

01

You are struggling with being targeted by numerous impersonation or phishing sites.

If you want to shut down a site.

GMO Enforce 1

If you want to conduct continuous monitoring.

If you want to enhance the credibility of your site.

02

You want to check if there are any impersonation or phishing sites.

If you want to assess the current situation.

GMO Domain Doctor

03

You are struggling with impersonation accounts on social media.

If you want to delete an account.

GMO Enforce 1

If you want to conduct continuous monitoring.

04

A customer has reported that counterfeit products are appearing on a marketplace.

If you want to remove a listing.

GMO Enforce 1

If you want to conduct continuous monitoring.

05

You are troubled by domain names being registered without permission by subsidiaries or agencies.

If you want to assess the current situation.

GMO Domain Doctor

If you want to establish rules.

Domain Guideline Creation Support

If you want to transfer a domain name.

Domain Transfer Service

06

You want to reclaim impersonation or phishing sites.

If you want to recover a site.

Domain Arbitration Support

07

You are troubled by impersonation using abandoned domain names.

If you want to shut down the site.

GMO Enforce 1

If you want to recover a site.

Domain Arbitration Support

If you want to avoid issues with abandoned domains.

Brand TLD Acquisition Support

08

Emails impersonating your company, including phishing attempts, are commonly observed.

If you want to enhance the reliability of your emails.

BIMI/VMC

If you want to prevent the misuse of unused domains in emails.

Anti-Spoofing Email Measures for Protected Domains

If you want to prevent impersonation emails from being sent.

DMARC Configuration Support

Diagnosis Result

VMC Usage

BIMI Record Usage

SPF Record Setting

DMARC Record Setting

Brand TLD Usage

Number of similar domains

To improve the rank, it is important to strengthen impersonation countermeasures.Specifically, let's implement the following measures.

Obtain a VMC (Enhance the Trustworthiness of Your BIMI Logo)

Set Up a BIMI Record (Increase Credibility with an Official Logo)

Set Up an SPF Record

Set Up DMARC

Utilize a Brand TLD (Fundamentally Prevent Spoofing)

Similar Domain Protection (Preventing Phishing Websites)

By implementing these measures,It is possible to improve the risk rank from D (high risk) to A (low risk).Taking early action is the key to preventing impersonation attacks.

Receive a more detailed impersonation risk diagnosis and countermeasures

What is

Service List

01

You are struggling with being targeted by numerous impersonation or phishing sites.

02

You want to check if there are any impersonation or phishing sites.

03

You are struggling with impersonation accounts on social media.

04

A customer has reported that counterfeit products are appearing on a marketplace.

05

You are troubled by domain names being registered without permission by subsidiaries or agencies.

06

You want to reclaim impersonation or phishing sites.

07

You are troubled by impersonation using abandoned domain names.

08

Emails impersonating your company, including phishing attempts, are commonly observed.

To improve the rank, it is important to strengthen impersonation countermeasures.
Specifically, let's implement the following measures.

By implementing these measures,
It is possible to improve the risk rank from D (high risk) to A (low risk).
Taking early action is the key to preventing impersonation attacks.