Anti Spoofing (Brand Security)

If you want protection
against impersonation

We assess the risk of impersonation. Please enter the domain name managed by your company.

Diagnosis Result

Potential impacts in case of impersonation

If a website is impersonated due to phishing scams or domain spoofing, there are risks such as customers and fans falling victim to fraud, the circulation of counterfeit products, and the spread of false information. As a result, there are direct business risks such as a decline in brand image, sluggish product sales, and potential reputational damage caused by the spread of misinformation.

VMC Usage

VMC (Verified Mark Certificate) is a digital certificate that certifies that the BIMI logo is genuine. Without a VMC, you may not be able to use the BIMI logo or your email may not be as effective at preventing spoofing. Obtaining a VMC further increases the credibility of your email.

BIMI/VMC information

BIMI Record Usage

YesNo

BIMI (Brand Indicators for Message Identification) is a system that displays the official logo of the email sender. Without this setting, it becomes difficult to determine whether an email is official, and fake emails are more likely to be trusted. Setting up BIMI makes it easier to spot spoofed emails.

BIMI/VMC information

SPF Record Setting

An SPF record specifies which mail servers are allowed to send emails from your domain. This allows the recipient to verify the authenticity of the sender. Without an SPF record, third parties can send emails using your domain, increasing the risk of spoofing. By setting up an SPF record, you can block emails from unauthorized senders and maintain a reliable email environment.

DMARC Record Setting

YesNo

DMARC (Domain-based Message Authentication, Reporting, and Conformance) is a protocol designed to specify how to handle email messages that fail authentication checks based on SPF and DKIM results. By implementing DMARC, organizations can strengthen their defenses against spoofed emails.
There are three types of DMARC policies.
none (monitor only): Messages that fail authentication are still delivered to the inbox.
quarantine: Messages that fail authentication are delivered to the spam or junk folder.
reject: Messages that fail authentication are rejected entirely and not delivered to the recipient.
DMARC also includes a reporting feature that provides visibility into unauthorized email activity. This enables organizations to implement more effective email security measures.

Brand TLD Usage

A brand TLD (e.g., .gmo) is a system that allows companies and organizations to use their brand name as a top-level domain, creating a unique domain space. It offers high security and greater control over brand management, helping to strengthen online strategies.

Number of similar domains

Similar domains(Display only 10 items)

This shows how many domains are similar to your company's domain (e.g. example.com). For example, if there are domains like examp1e.com (with the number 1) or example.co (.co domain), it is easier for fraudulent websites to be created. The higher the risk of spoofing, the more caution you need to take.

To improve the rank, it is important to strengthen impersonation countermeasures.
Specifically, let's implement the following measures.

Obtain a VMC (Enhance the Trustworthiness of Your BIMI Logo)

Obtain a VMC (Verified Mark Certificate) to officially certify the BIMI logo and enhance email credibility.

BIMI/VMC information

Set Up a BIMI Record (Increase Credibility with an Official Logo)

Make it easier to distinguish from official emails

Configure BIMI for the sending domain to make it easier to distinguish official emails from fraudulent ones.

Change the DMARC policy

Set the DMARC policy to "p=reject" or "p=quarantine" to enable BIMI application.

Display the official logo

Ensure a BIMI-compatible email environment so that the official logo can be displayed.

BIMI/VMC information

Set Up an SPF Record

Prevent the sending of spoofed emails

By configuring the SPF record in the DNS and specifying the mail servers authorized as legitimate senders, you can prevent third parties from unauthorized use of your domain.

Prevent emails from being marked as spam

If SPF is not configured, even legitimate emails may be recognized as "suspicious" by the recipient's system and placed in the spam folder. By setting up SPF, you ensure that legitimate emails are delivered properly.

Use in combination with DMARC

Since SPF alone cannot prevent all cases, combining it with DMARC allows for more precise control over spoofed email policies, ensuring a more effective elimination of fraudulent emails.

Set Up DMARC

Block spoofed emails

By setting DMARC to "p=reject", emails that fail authentication will not be sent, preventing the reception of fraudulent emails.

Reduce the risk of phishing scams

By filtering emails that fail SPF or DKIM authentication into the spam folder, the risk of recipients accidentally opening fraudulent emails can be reduced.

Use the reporting feature to monitor attack activity

By utilizing DMARC's reporting feature, you can identify which emails fail authentication and monitor the presence and trends of spoofing attacks.

Utilize a Brand TLD (Fundamentally Prevent Spoofing)

Acquisition of a dedicated domain

For example, acquiring a dedicated domain like ".gmo" prevents others from registering similar domains, significantly enhancing security.

Reduction of risk rank

Having a brand TLD tends to result in a lower risk rank in search results.

Promote awareness of the official domain

It is important to standardize the official website URL under the brand TLD and inform users that any domain other than this is not official.

Similar Domain Protection (Preventing Phishing Websites)

If your domain is "example.com", registering similar domains such as "example.net" or "examp1e.com" (with the number 1 instead of 'l') can enhance security and prevent misuse.

Regularly check for similar domains

Use a domain monitoring service to check for newly created similar domains.

Delete immediately upon discovery

If a phishing site is detected, submit a deletion request (domain suspension procedure) immediately.

By implementing these measures,
It is possible to improve the risk rank from D (high risk) to A (low risk).
Taking early action is the key to preventing impersonation attacks.

Receive a more detailed impersonation risk diagnosis and countermeasures

Free detailed diagnosis by an analyst

What is

image：Emails impersonating your company, including phishing attempts, <br class=br_only_pc>are commonly observed.

Emails impersonating your company, including phishing attempts,
are commonly observed.

Find services →

image：You are struggling with being targeted <br>by numerous impersonation or phishing sites.

You are struggling with being targeted
by numerous impersonation or phishing sites.

Find services →

image：You want to check <br>if there are any impersonation or phishing sites.

You want to check
if there are any impersonation or phishing sites.

Find services →

You are struggling with impersonation accounts
on social media.

Find services →

image：A customer has reported <br class=br_only_pc>that counterfeit products are appearing on a marketplace.

A customer has reported
that counterfeit products are appearing on a marketplace.

Find services →

image：You are troubled by domain names being registered without permission <br class=br_only_pc>by subsidiaries or agencies.

You are troubled by domain names being registered without permission
by subsidiaries or agencies.

Find services →

image：You want to reclaim <br class=br_only_sp>impersonation or phishing sites.

You want to reclaim
impersonation or phishing sites.

Find services →

image：You are troubled by impersonation <br class=br_only_sp>using abandoned domain names.

You are troubled by impersonation
using abandoned domain names.

Find services →

Service List

01Emails impersonating your company, including phishing attempts,
are commonly observed.

02You are struggling with being targeted
by numerous impersonation or phishing sites.

03You want to check
if there are any impersonation or phishing sites.

If you want to assess the current situation. GMO Domain Doctor

04You are struggling with impersonation accounts
on social media.

05A customer has reported
that counterfeit products are appearing on a marketplace.

06You are troubled by domain names being registered without permission
by subsidiaries or agencies.

07You want to reclaim
impersonation or phishing sites.

If you want to recover a site. Domain Arbitration Support

Diagnosis Result

VMC Usage

BIMI Record Usage

SPF Record Setting

DMARC Record Setting

Brand TLD Usage

Number of similar domains

To improve the rank, it is important to strengthen impersonation countermeasures.Specifically, let's implement the following measures.

Obtain a VMC (Enhance the Trustworthiness of Your BIMI Logo)

Set Up a BIMI Record (Increase Credibility with an Official Logo)

Set Up an SPF Record

Set Up DMARC

Utilize a Brand TLD (Fundamentally Prevent Spoofing)

Similar Domain Protection (Preventing Phishing Websites)

By implementing these measures,It is possible to improve the risk rank from D (high risk) to A (low risk).Taking early action is the key to preventing impersonation attacks.

Receive a more detailed impersonation risk diagnosis and countermeasures

What is

Service List

01Emails impersonating your company, including phishing attempts,are commonly observed.

02You are struggling with being targetedby numerous impersonation or phishing sites.

03You want to checkif there are any impersonation or phishing sites.

04You are struggling with impersonation accountson social media.

05A customer has reportedthat counterfeit products are appearing on a marketplace.

06You are troubled by domain names being registered without permissionby subsidiaries or agencies.

07You want to reclaimimpersonation or phishing sites.

08You are troubled by impersonationusing abandoned domain names.

To improve the rank, it is important to strengthen impersonation countermeasures.
Specifically, let's implement the following measures.

By implementing these measures,
It is possible to improve the risk rank from D (high risk) to A (low risk).
Taking early action is the key to preventing impersonation attacks.

01Emails impersonating your company, including phishing attempts,
are commonly observed.

02You are struggling with being targeted
by numerous impersonation or phishing sites.

03You want to check
if there are any impersonation or phishing sites.

04You are struggling with impersonation accounts
on social media.

05A customer has reported
that counterfeit products are appearing on a marketplace.

06You are troubled by domain names being registered without permission
by subsidiaries or agencies.

07You want to reclaim
impersonation or phishing sites.

08You are troubled by impersonation
using abandoned domain names.