Nameshield renews its ISO 27001 certification on all its registrar activity

Nameshield renews its ISO 27001 certification

First French registrar certified ISO 27001 since 2017, for its activities of domain names portfolio, DNS and TLS/SSL certificates management, Nameshield is proud to announce the renewal of its ISO 27001 certification in February 2023.

What is the ISO 27001 certification?

ISO 27001 is an international standard that describes the requirements for the implementation of an Information Security Management System, intended to select the security measures to be implemented in order to ensure the protection of a company’s sensitive assets on a defined perimeter. In Nameshield’s case, this covers the entire registrar activity.

At a higher level, the ISO 27001 standard requires that the managers of the company are involved in the cyber defense. In parallel, a steering committee follows the implementation of the new measures respecting the standard.

Why the ISO 27001 certification?

To be ISO 27001 certified is to guarantee to our clients and partners that the security of information systems is fully integrated in each of the services offered by Nameshield, that we are committed to a process of continuous improvement, requiring specific resources that we have chosen to deploy.

The ISO 27001 certification also confirms the competence of Nameshield’s employees and their expertise in protecting critical information.

What this ISO 27001 certification guarantees

The ISO 27001 certification, delivered by LRQA, the World Leader of the certification of value added Management systems, ensures:

  • The involvement of all Nameshield’s employees in the continuous improvement of our security arrangements;
  • An answer to our security goals and those of our clients through an annual analysis of the risks and their processing, according to the Ebios method;
  • The deployment of more secure products and services, with higher added values, that better meet our clients’ expectations;   
  • Our mobilization in case of incidents and our ability to always do better by analyzing the processing of each alert;
  • The continuity of our activities, whatever the threats, by ensuring our remote activities (backup site, telecommuting, redundant servers…).

The renewal of this ISO 27001 certification confirms Nameshield’s determination to offer the best services to its clients under conditions of optimal security.

New document: 5 minutes to understand Phishing as a Service (PhaaS)

5 minutes to understand Phishing as a Service (PhaaS)

Phishing-as-a-Service (PhaaS) is a fast-growing phenomenon in the cyberthreats world, getting armed with tools that make it more and more prosperous.

It has opened up the online fraud market to the masses, to the point that phishing attempts have become a daily plague.

Find in this new “5 minutes to understand” document, available for download on the Nameshield’s website, how phishing is now sold in ready-to-use kit and how to protect against it.

The .SEXY registry increases drastically its prices

The .SEXY registry increases drastically its prices

The registry that owns .SEXY will drastically increase the price of new registrations under this extension from April, the 30th 2022, 18:00 (Europe/Paris).

All registrations, transfers and renewals of a .SEXY domain name registered after April 30th 2022 will be charged 3850 € HT per year.

This very important price increase, which has not been explained by the registry, will only apply to domain names registered after this deadline.

Domain names registered before April, the 30th can still be renewed at the current price (70 times lower).

To protect your brands without suffering this increase, we invite you to register your .SEXY domain names now.

The Nameshield team is at your disposal for any questions.

Image source :Uni Naming & Registry (UNR) website

ALERT: TLS/SSL certificates – Phishing vigilance

ALERT: TLS/SSL certificates - Phishing vigilance

Important: information relating to the situation in Russia, Belarus and Ukraine.

In response to the evolving geopolitical situation in Ukraine, many SSL certification authorities are suspending the issuance and reissuance of all types of certificates affiliated with Russia and Belarus.

This includes suspending issuance and reissuance of certificates to TLDs related to Russia and Belarus, including .ru, .su, .by, .рф, as well as to organizations with addresses in Russia or Belarus. We will keep you informed as soon as the situation returns to normal.

Also, we observe a significant increase in phishing attacks. We advise you to be extra vigilant, especially when it comes to new domain name registrations using your trademarks.

Nameshield remains of course at your disposal to accompany and advise you in this complex context.

Opening of the sunrise phase of the .FORUM

Launch of the .FORUM - new gTLDs
Image source: ary74 via Pixabay

The .FORUM is an interesting new extension to exploit and secure.

Here is the launching schedule:

  • Sunrise Phase: November 16, 2020 – December 16, 2020
  • General Availability: March 02, 2021, on a first come, first served basis!

For more information on the conditions of registration of your .FORUM, please contact your Nameshield consultant .

Launch of the new gTLD .CONTACT

Domain name - new gTLD - .CONTACT
Image source: Tumisu via Pixabay

Launched by the Donuts registry, this .CONTACT extension is interesting, particularly for the contact pages of your websites.

This extension is also part of the TrueName program created by the Donuts registry: when registering a domain name in .CONTACT, Donuts will also protect the typographical alternatives of your brand by blocking them, thus preventing some phishing attempts through the registration by a third party of a typographically similar name (ex.: loulou.contact vs l0ulou.contact).

Reminder of the launch schedule

  • Sunrise [period reserved for trademark holders]: September 29, 2020 – November 28, 2020
  • Early Access Phase [open to all, prices are decreasing day by day]:

– Early Access Phase (EAP) Day 1: December 2/3

– Early Access Phase (EAP) Day 2: December 3/4

– Early Access Phase (EAP) Day 3: December 4/5

– Early Access Phase (EAP) Day 4: December 5/6

– Early Access Phase (EAP) Day 5-7: December 6/9

  • General Availability: from December 9, 2020

For any questions, your Nameshield consultant is at your disposal.

Discover the Cybervictime.net website, launched on the occasion of the Cybersecurity Month

Cybervictime.net website
Source : Cybervictime.net website

October is the month in Europe that celebrates cybersecurity. Every year, the aim of this operation is to make users aware of digital security issues, both on a personal and professional level.

Many players are mobilized on this occasion to alert on cyber risks and inform on existing protection measures.

It is in this context that the website cybervictime.net was launched!

This website is a digital manual of easy to implement solutions to protect your computer and your digital life.

You will find interesting tutorials about the security of:

  • your computer ;
  • your mobile phone;
  • your digital life and the protection of your personal data;
  • your online shopping.

Interpol warns of alarming rise in cyberattacks during COVID

Cyberattack - Covid 19
Image source : geralt via Pixabay

In a new study of August 2020, INTERPOL measured the impact of COVID-19 on cybercrime. The results reveal that while the primary targets of cyberattacks usually remain individuals and SMEs, these have significantly expanded to large organizations and governments during the COVID period, revealing a new underlying trend.

The fact that working from home was massively implemented has obviously increased vulnerabilities which cybercriminals have been able to exploit seeking to take advantage of the situation.

According to this study, between January and April 2020, 907,000 spam messages, 737 malware incidents and 48,000 malicious URLs, all related to COVID-19 were detected.

The most common cyberattacks during the COVID-19 period were as follows:

  • Phishing
  • Ransomware
  • DDoS
  • Data harvesting malware
  • Cybersquatting / fraudulent domain names
  • Fake news

In Europe, two-thirds of member countries report a major increase in the number of cybersquatted domain names containing the keywords COVID or CORONA and ransomware deployments on critical infrastructures.

Cloning of official government websites is increasing massively as cybercriminals seek to steal sensitive data that can be used in future attacks.

In this report, you will discover all the measures implemented by INTERPOL.

It is more crucial than ever to secure your domain names carrying critical services and to protect your infrastructures.

Our consultants are, of course, at your disposal to assist you on these points.

Booking.com, a generic term turning into a brand?

Booking.com - domain name
Image source: Julius_Silver via Pixabay

A trademark must be “distinctive”, which is why no one can register a generic term as a trademark.

However, a decision of the US Supreme Court on June 30, 2020 allows Booking.com to register its domain name as a trademark.

If for USPTO (U.S Patent and Trademark Office), “booking” is a generic term, and adding the .COM would amount to adding “Company” to a name, thus arguing that booking.com cannot be registered as a trademark, the Court decided otherwise.

Indeed, it considered that “.COM” could not be compared to “company” since the essential criterion would be the identification of consumers.

In particular, the online travel company presented consumers surveys indicating that 75% of consumers thought Booking.com was a brand.

Of course, this first argument, easily challenged by Judge Breyer, was not the one that hit the nail on the head in the final decision. Since a domain name can only belong to one holder, the risks of confusion that must be avoided by trademarks could not arise here, since no one else can use the name Booking.com.

Despite the registration of the booking.com trademark, the company will not be able to use it as a trademark right in disputes that could oppose it to other companies using the generic term “booking” in their trademark.

To read the full decision, click here.

Participate in the .eu Web Awards!

The .eu Web Awards is an online competition, launched in 2014 by EURID, the .eu registry, which rewards the best websites in the .eu, .ею or .ευ extensions, divided into 5 categories:

  • Leaders
  • Rising stars
  • Laurels
  • House of .eu
  • Better world

It is possible to apply until 05 August 2020 and the participation is free of charge: https://webawards.eurid.eu/

Once your candidature has been validated, it’s up to the public to vote! The 3 websites under each category that have won the most votes will then become finalists.

The big winners will be revealed at the Gala held in Brussels on 18 November 2020, where the 15 finalists will be invited.

The 5 winners will win the following prizes:

  • a two-month billboard advertising campaign in Brussels airport
  • a trophy, a customised video for communication support
  • the .eu Web Awards icon to use on their websites and social networks.

Do you own a website in .eu, .ею or .ευ? This contest can be a nice opportunity to liven up your social networks, generate additional traffic and win the prizes mentioned above.

Interested? Visit https://webawards.eurid.eu/ for more information.