Brian Krebs recent article - Why Phishers Love New TLDs Like .shop, .top and .xyz - begins with a review of Interisle's Cybercrime Suppy Chain 2024 study findings and measurements and dives into an investigative area where he excels: identifying the parties behind the crimes.
Brian reports that "At least some of that increase is likely from a prolific cybercriminal using the nickname Chenlun, who has been selling phishing kits targeting domestic postal services in the United States and at least a dozen other countries."
While the title suggests this post is about TLDs, Brian also calls attention to our findings regarding subdomain providers, noting that "cyberattacks hosted at subdomain provider services can be tough to mitigate, because only the subdomain provider can disable malicious accounts or take down malicious web pages."
Brian caught up to CAUCE president and Interisle's friend and colleague John Levine, who was brutally frank about ICANN’s proposed next round envisions accepting applications for new gTLDs in 2026.
#worthreading #krebsonsecurity #cybercrime #domainabuse