Justin Furniss

We've made significant improvements to how we classify brand impersonation and lookalike domains in our threat intelligence platform. Initially, our approach grouped these domains under a broad identifier. However, as we analyzed real-world cases, it became clear that a one-size-fits-all classification wasn't sufficient.

Why the Change?​

Lookalike domains serve a variety of purposes—some are clear attempts at phishing, while others are more nuanced, requiring different investigative approaches.

Introducing the CTEM.org Working Group: A Labor of Love (and Maybe a Little Bit of Madness)

This project is a labor of love—and maybe a slightly maniacal drive to bring some order to the infinite landscape that CTEM is. After two years of offering our Continuous Threat Exposure Management (CTEM) service, we feel like we've only scratched the surface. But every journey starts with a first step, and this one starts with building a community-driven standard.