internet

Phish-Friendly Domain Registry

Photo of BeauHD BeauHDJuly 24, 2024
0 12 1 minute read
phish-friendly-domain-registry
Phish-Friendly Domain Registry

Phish-Friendly Domain Registry ‘.top’ Put On Notice (krebsonsecurity.com)

Posted by BeauHD from the top-level-trouble dept.

Investigative journalist and cybersecurity expert Brian Krebs writes: The Chinese company in charge of handing out domain names ending in “.top” has been given until mid-August 2024 to show that it has put in place systems for managing phishing reports and suspending abusive domains, or else forfeit its license to sell domains. The warning comes amid the release of new findings that .top was the most common suffix in phishing websites over the past year, second only to domains ending in “.com.” On July 16, the Internet Corporation for Assigned Names and Numbers (ICANN) sent a letter to the owners of the .top domain registry. ICANN has filed hundreds of enforcement actions against domain registrars over the years, but in this case ICANN singled out a domain registry responsible for maintaining an entire top-level domain (TLD). Among other reasons, the missive chided the registry for failing to respond to reports about phishing attacks involving .top domains.

“Based on the information and records gathered through several weeks, it was determined that .TOP Registry does not have a process in place to promptly, comprehensively, and reasonably investigate and act on reports of DNS Abuse,” the ICANN letter reads (PDF). ICANN’s warning redacted the name of the recipient, but records show the .top registry is operated by a Chinese entity called Jiangsu Bangning Science & Technology Co. Ltd. Representatives for the company have not responded to requests for comment.

Domains ending in .top were represented prominently in a new phishing report released today by the Interisle Consulting Group, which sources phishing data from several places, including the Anti-Phishing Working Group (APWG), OpenPhish, PhishTank, and Spamhaus. Interisle’s newest study examined nearly two million phishing attacks in the last year, and found that phishing sites accounted for more than four percent of all new .top domains between May 2023 and April 2024. Interisle said .top has roughly 2.76 million domains in its stable, and that more than 117,000 of those were phishing sites in the past year.

Never buy from a rich salesman. — Goldenstern

Working…

Tags
Photo of BeauHD BeauHDJuly 24, 2024
0 12 1 minute read
Photo of BeauHD

BeauHD

Related Articles

nyt-strands-today-—-hints,-answers-and-spangram-for-sunday,-september-15-(game-#196)

NYT Strands today — hints, answers and spangram for Sunday, September 15 (game #196)

5 days ago
indian-firms-incapable-of-preventing-almost-half-of-cyberattacks:-report

Indian Firms Incapable of Preventing Almost Half of Cyberattacks: Report

November 2, 2023
the-internet-is-'down-bad'-for-taylor-swift's-'the-tortured-poets-department'

The internet is 'Down Bad' for Taylor Swift's 'The Tortured Poets Department'

April 19, 2024
quordle-today-–-hints-and-answers-for-tuesday,-june-4-(game-#862)

Quordle today – hints and answers for Tuesday, June 4 (game #862)

June 3, 2024

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

© Copyright 2024, All Rights Reserved  |  zabollah
Back to top button

Adblock Detected

Block the adblockers from browsing the site, till they turn off the Ad Blocker.