07/29/2025 09:50:17 AM
In a recent Interisle Insights post I explained how phishers choose domain names in such a way as to fool unsuspecting users by making them appear to be valid for the site they think they are reaching.
Phishers have adopted another kind of deception in domain name composition: they include well known TLDs within their maliciously registered domain names to exploit a reader’s tendency to see what they want to read rather than what appears in a domain name. In this post, my colleague Colin Strutt discusses how domain names like:
com-fastdelivery[.]shop
com-onlineapplication[.]shop
com-ticketsua[.]xin
com-track[.]online
have become increasingly prevalent in our phishing data.
#phishing #fraud #deception #dnsabuse #domainname #TLDs