Phish-Friendly Domain Registry “.top” Put on Notice
Phish-Friendly Domain Registry “.top” Put on Notice
The Chinese company in charge of handing out domain names ending in “.top” has been given until mid-August 2024 to show that it has put in place systems for managing phishing reports and suspending abusive domains, or else forfeit its license to sell domains. The warning comes amid the release of new findings that .top was the most common suffix in phishing websites over the past year, second only to domains ending in “.com.”
Not even joking, thought this was about the band.
Same. I didn't think I've ever heard the term used as a verb, it's always "phishing"!
second only to domains ending in “.com.”
The report includes a case study in which a phisher this year registered 17,562 domains over the course of an eight-hour period — roughly 38 domains per minute — using .lol domains that were all composed of random letters.
At $1.80 per domain, that's about $28k on domains.
Malware operators
A .zip TLD does not exactly scream ‘legit’ either.
I was really against .zip and .mov domains when Google announced making them new top-level domains, because it's a fucking wet dream for malicious actors. But either people gotten smarter or browsers/sites are better at distinguishing files from links these days. There was an initial uptick in phishing, but it quickly died down.
Not to mention this instance is actually chill
This is Lemmy.zip, the coolest instance