Home / Industry

Phishers Beware!

Don't miss a thing – sign up for CircleID Weekly Wrap newsletter delivered to your inbox once a week.

The days of viral phishing are over. Since its inception, phishing, has always been a criminal magnet. It has a low start-up cost and few barriers to entry. At .ORG, Public Interest Registry, we work hard to combat phishing attacks. So much so, phishers have largely stopped registering domains on both .ORG and .INFO. In 2009, phishing reached an all time peak with a shocking number of attacks. In a new report by Boston-based APWG , called the Global Phishing Report, authors Greg Aaron and Rod Rasmussen delve into the attacks of 2009 and highlight the dangers of "phishing gangs."

According to the report, the gravity of phishing attacks which occurred in 2009 is alarming. The number of phishing URLs reported in the second half of 2009 were at about 125,000, more than double the attacks in the first half of the year. Additionally, the attacks occurred on about 30,000 unique domain names. Phish were also detected on over 2,000 unique IP addresses rather than on domain names, and of the 29,000 phishing domains, about 6,400 were registered maliciously by phishers. What's more shocking is that of those 6,400, about 4,100 were registered by one terrible player in the internet space — a dreaded beast called the Avalanche.

To date, Avalanche was one of the most sophisticated and damaging phishing tools on the Internet. It perfected a mass production system for deploying other phishing sites and malware, designed specifically to automate identity theft and facilitate authorized transactions from consumer bank accounts. This application was so vindictive that it was responsible for two-thirds of all attacks launched in the second half of 2009 and was responsible for the overall increase in phishing attacks ever recorded on the Internet.

Phishers are attracted to websites that are rich in registrants. Thus, .ORG has a large number of phish on compromised Web sites. However, .ORG's non-Avalanche phishing times are far below average. So much so, that the great majority of phishing is concentrated in just a few namespaces. In fact, 76% of all phishing occurred in just four TLD's: .COM, .EU, .NET, and .UK.

This informative APWG report thoroughly showcases the risk phishers pose to sites. At PIR, we are always working and advancing our preventative systems and remain committed to blocking phishers from registering on our domains.

Written by Alexa Raad, Chief Executive Officer of Public Interest Registry

PIR

About PIR – Public Interest Registry is a nonprofit corporation that operates the .org top-level domain – the world's third largest "generic" top-level domain with more than 10 million domain names registered worldwide. As an advocate for collaboration, safety and security on the Internet, Public Interest Registry's mission is to empower the global noncommercial community to use the Internet more effectively, and to take a leadership position among Internet stakeholders on policy and other issues relating to the domain naming system. Learn More

Related topics: Cybercrime, DNS, Domain Names, Registry Services, Security, Top-Level Domains

 
   

Comments

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Sponsored Topics

Promoted Posts

Now Is the Time for .eco

.eco launches globally at 16:00 UTC on April 25, 2017, when domains will be available on a first-come, first-serve basis. .eco is for businesses, non-profits and people committed to positive change for the planet. See list of registrars offering .eco more»

Boston Ivy Gets Competitive With Its TLDs, Offers Registrars New Wholesale Pricing

With a mission to make its top-level domains available to the broadest market possible, Boston Ivy has permanently reduced its registration, renewal and transfer prices for .Broker, .Forex, .Markets and .Trading. more»

Industry Updates – Sponsored Posts

Leading Internet Associations Strengthen Cooperation

5 Afilias Top Level Domains Now Licensed for Sale in China

Radix Announces Largest New gTLD Sale with Casino.Online

2016 Year in Review: The Trending Keywords in .COM and .NET Domain Registrations

Global Domain Name Registrations Reach 329.3 Million, 2.3 Million Growth in Last Quarter of 2016

A Look at How the New .SPACE TLD Has Performed Over the Past 2 Years

Verisign Releases Q4 2016 DDoS Trends Report: 167% Increase in Average Peak Attack from 2015 to 2016

Neustar to be Acquired by Private Investment Group Led by Golden Gate Capital

Startup League Reports from WebSummit, Lisbon

Verisign Q3 2016 DDoS Trends Report: User Datagram Protocol (UDP) Flood Attacks Continue to Dominate

2016 U.S. Election: An Internet Forecast

.SPACE Becomes the Choice of the First Ever Space Nation Asgardia

Government Guidance for Email Authentication Has Arrived in USA and UK

ValiMail Raises $12M for Its Email Authentication Service

MarkMonitor Supports Brand Holders' Efforts Regarding .Feedback Registry

Don't Gamble With Your DNS

8 Tips to Find Your Perfect .COM Domain Name

Why .com is the Venture Capital Community's Power Player

Defending Against Layer 7 DDoS Attacks

Understanding the Risks of the Dark Web