In the ongoing threat landscape posed by these attackers, domain and certificate management also play crucial roles as security elements. Security vulnerabilities can arise due to issues like domain ownership transfer (hijacking), domain registration expiration, DNS MX record changes, HTTPS certificate expiration, and typo squatting.

• Domain hijacking is an act where an attacker seizes domain ownership, putting the company's website under the attacker's control, which can be exploited for malware distribution, phishing attacks, and more.

• If the domain registration period expires, there is a possibility that attackers could take over the domain. To prevent such situations, it is crucial to regularly check the domain registration period and renew it before it expires. After expiration, re-registering the domain may be difficult, potentially causing the company's website to become inaccessible or damage the brand's value. Therefore, it is safe to set up domain registration renewal notifications.

• HTTPS certificates (SSL certificates) play a role in encrypting communication between the website and users, securing the data. If the certificate expires, the website may be marked as insecure, leading to a loss of trust for users. Additionally, once the certificate expires, communication will not be encrypted, increasing the risk of attackers intercepting or tampering with data. Therefore, it is important to regularly check the certificate validity periods and renew them before they expire.

• Typo Squatting is a phishing technique where attackers register similar domains by exploiting users' mistakes in typing website addresses. This method leads users to unintentionally access the attacker's site, attempting to steal personal information or download malicious software.

Regularly checking and managing these elements plays a significant role in preventing incidents. In particular, to protect domain ownership, it is recommended to apply multi-factor authentication (MFA), automate domain registration renewal reminders, and actively manage using tools like ASM (Attack Surface Management).

ASM (Attack Surface Management)

It is a process of identifying all of an organization's digital assets and continuously monitoring and managing potential security vulnerabilities on them. The attack surface refers to all exposed assets of an organization, such as systems, networks, software, and websites, where external attackers can attempt attacks.