Home / News

Phishers Expand Number of Top Level Domains Abused, Policy Changes Found Effective in Prevention

  • Nov 24, 2008 8:35 AM PST
  • Comments: 4
  • Views: 4,107
Print Comment
By CircleID Reporter

The new Global Phishing Survey released by the Anti-Phishing Working Group (APWG) this month reveals that phishing gangs are concentrating their efforts within specific top level domains (TLDs), but also that anti-phishing policies and mitigation programs by domain name registrars and registries can have a significant and positive effect.

For this new study, covering the first half of 2008, Rod Rasmussen of Internet Identity and Greg Aaron of Afilias surveyed 47,324 unique phishing attacks located on 26,678 unique domain names. The number of TLDs abused by phishers for their attacks expanded 7 percent from 145 in H2/2007 to 155 in H1/2008. The proportion of Internet-protocol (IP) number-based phishing sites decreased 35 percent in that same period, declining from 18 percent in the second half of 2007 to 13 percent in the first half of 2008.

The full report is available for download here (press release).

Related topics: Domain Names, Registry Services, Policy & Regulation, Security, Spam, Top-Level Domains

WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:
Print Comment

Comments

Whois Proxy Correlation? Paul Stahura  –  Nov 25, 2008 12:18 PM PST

Its interesting that of two TLDs - .biz and .us, which are about the same size and run by the same operator, that .us has a higher score (more phishing) than .biz, while one of the only differences between these two TLDs is the .us does not allow proxy services and .biz does.  There seems to be an inverse correlation - no proxy allowed gets more phishing - which may deserve more investigation.

# 1 Reply  |  Link  |  Report Problems
Paul - that might be within statistical error limits? Suresh Ramasubramanian  –  Nov 27, 2008 2:55 AM PST

biz and us are certainly far lower down on the list of most abused TLDs than com, cn, info ..

They used to have a much more massive problem earlier, mostly with spam sites - but that seems to have been resolved ages back.

# 2 Reply  |  Link  |  Report Problems
I'm not comparing .biz to .com Paul Stahura  –  Nov 30, 2008 10:24 AM PST

Its like running an experiement.  Try to keep as many variables constant as you can, so you can see the effect of the single variable you are changing.  .biz and .us have many variables in common, except one major variable: .us does not allow proxy whois registrations, and .us does. Thanks to this report we can compare these two TLDs when it comes to phishing. It was said that proxy whois registrations lead to more phishing.  Comparing these two very similar TLDs shows that apparently that is not the case.

# 3 Reply  |  Link  |  Report Problems
I meant... Paul Stahura  –  Nov 30, 2008 10:25 AM PST

.us does not allow proxy whois registrations, and .biz (not .us) does.

# 4 Reply  |  Link  |  Report Problems

To post comments, please login or create an account.

Related Blogs

What Does It Take To Repair Trust? What Will It Take ICANN To Win Back "Trust"? (Part I)

  • Feb 08, 2012
  • Comments: 0

Is ICANN Opening up Public Comment Periods in Bad Faith?

  • Feb 07, 2012
  • Comments: 1

10 Reasons Why New gTLDs May Not Work For You

  • Feb 07, 2012
  • Comments: 0

Phish or Fair?

  • Feb 07, 2012
  • Comments: 4

New gTLD Application Monitoring? Now?

  • Feb 06, 2012
  • Comments: 1
View More

Related News

DNSChanger Trojan Still Running on Half of Fortune 500s, US Govt

  • Feb 02, 2012
  • Comments: 0

Public-Private Cooperation Policy for Cyber Security Suggested by Commissioner Kroes

  • Jan 31, 2012
  • Comments: 0

DDoS Attacks Increased by 2000% in Past 3 Years, Asia Generating Over Half of Recent Attacks

  • Jan 31, 2012
  • Comments: 0

Protests Erupt Over EU's Anti-Counterfeiting Trade Agreement

  • Jan 27, 2012
  • Comments: 0

NASA Website Blocked Due to DNSSEC Error

  • Jan 25, 2012
  • Comments: 0
View More

Topics

Access ProvidersLaw
BroadbandMalware
CensorshipMobile
Cloud ComputingMultilinguism
CyberattackNet Neutrality
CybercrimeP2P
CybersquattingPolicy & Regulation
Data CenterPrivacy
DNSRegional Registries
DNSSECRegistry Services
Domain NamesSecurity
EmailSpam
EnumTelecom
ICANNTop-Level Domains
Internet GovernanceVoIP
Internet ProtocolWeb
IP AddressingWhite Space
IPTVWhois
IPv6Wireless
View More

Industry Updates – Sponsored Posts

.ORG COO Discusses Priorities With DailyVista, Pursuit of .NGO Domain

  • By PIR
  • Views: 287

StarHub to Acquire '.starhub' New Top-Level Domain

ARI Registry Services Signs 21 Contracts in the First Week of New TLD Applications

MarkMonitor to Exhibit at Internet Tech Policy Exhibition and Reception to be Held on Capitol Hill

Sedari Signs With Dot Moscow Bidders

.ORG, The Public Interest Registry Welcomes Nancy Gofus As Chief Operating Officer

  • By PIR
  • Views: 688

Minds+Machines Works with .bayern

The New Domain For Japan, JP.NET, Launches With Exclusive Invitation to Trademark Owners

Verisign to Award New Infrastructure Research Grants

Being a .PRO When Choosing a Registry Services Partner

Afilias Acquires Registry Services Corporation, .PRO

Thoughts on Applying for a Generic Top-Level Domain

Sedari Launches "Guess the Numbers Game" for New TLD Program

dot Brand Makes Its Debut: Afilias Advises Companies to Act Now for Successful TLD Applications

Facets of gTLD Registry Technical Operations - Registry Services

Technology and Finance Industries to Dominate New gTLD Applications

.CO Internet Selects Sedo to Broker Previously Unreleased .CO Domain Names

Sedari and NCC Launch Programme to Assist New Registry Operators

Nixu SNS 2.5 Series Gives Fresh Views on DNS

Afilias Says "No" to SOPA

View More

Hot Topics

Minds + Machines

Top-Level Domains

Sponsored by
Minds + Machines
Afilias

DNSSEC

Sponsored by
Afilias
dotMobi

Mobile

Sponsored by
dotMobi
Verisign

Security

Sponsored by
Verisign
Neustar UltraDNS

DNS

Sponsored by
Neustar UltraDNS
View More