How cybercriminals play the domain game

How cybercriminals play the domain game

Sponsored Conventional email security tools are losing the battle against phishing attacks. The cause? Instead of registering a handful of domains from which to conduct their phishing campaigns, many cybercriminals now buy them by the thousand. This approach makes it harder for traditional email protection tools to spot phishing emails among the ‘noise’. Thanks to bulk domain registration services, malicious spammers can tip the balance in their favour through sheer volume.


Domain blocklists have traditionally been one of the most important assets in the war against phishing and spam. If a domain is on a blocklist then there's a high probability that it has been used in a malicious campaign such as ransomware or credential phishing in the past. The exact process for blocklisting a domain is often opaque, but it's a gradual process involving a measurable reputation for each domain that changes over time.


Fact ..

Support the originator by clicking the read the rest link below.