Abuse takes its “toll” on .top: But who is paying the price?

Despite ICANN issuing a formal notice to .top citing a breach of contract for failing to address DNS abuse, the situation has not improved. Over the last six months, abuse of .top hasn’t just persisted, it’s gotten 50% worse! So, why is this happening, and what can be done to ... Read More

Domain Reputation Update Oct 2024 – Mar 2025

New domains are up 7.39%, with 2.9 million malicious domains detected. Chinese gambling sites dominate the Top 20 TLDs, while .top remains a hotspot for abuse - this time with a spike in toll road scams. Read the full report here ... Read More

Query the legacy DNSBLs via Microsoft? Move to Spamhaus Technology’s free Data Query Service

If you're using the free legacy DNS Blocklists (DNSBLs) through the Public Mirrors while running on Microsoft’s infrastructure, you'll need to make a few small adjustments to your email setup. These changes are simple to apply, but if you don’t take action, you risk having some - or even all ... Read More

Networks hosting botnet C&Cs: Same players, same problems

With every Botnet Threat Update we publish, the same networks consistently appear in the Top 20 for hosting botnet command and control (C&C) servers. But why does this keep happening? In this Botnet Spotlight, we look into the root causes behind this persistent issue and what networks must do to ... Read More

Botnet Threat Update July to December 2024

Overall botnet command control (C&C) activity decreased marginally by -4% between July and December last year. China dominated the Top 20 charts with increased botnet C&C activity across domain registrars and networks, ranking #1 globally for hosting botnet C&C servers. Download the latest report to learn more ... Read More

If you query the legacy DNSBLs via Hetzner move to Spamhaus Technology’s free Data Query Service

Currently accessing the free legacy DNS Blocklists (DNSBLs) via the Public Mirrors, and using Hetzner's network? You'll need to make some minor changes to your email infrastructure. The changes are simple to implement, but if you fail to do so, you could find that at some point post-February 19th 2024, ... Read More

Truffe via PEC – Far perdere tempo e denaro alle aziende italiane

In questo articolo condividiamo un caso dove dei criminali hanno utilizzato delle credenziali rubate ad un ignaro imprenditore per spedire centinaia di PEC malevoli ad altrettanto ignari altri utilizzatori di PEC, causando un notevole dispendio di tempo e denaro, ed analizziamo i rischi della proposta portata avanti dalla UE per ... Read More

PEC “invoice scam” – Stealing time, money, and trust from businesses

PEC stands for “Posta Elettronica Certificata” - a type of legally binding “certified email” used in Italy. It's also a hub of abuse targeting business owners. In this article, we share a real-life case of criminals stealing PEC credentials to send malicious emails, causing significant loss of time and money, ... Read More

Domain Reputation Update Apr 2024 – Sept 2024

This reporting period our domain experts observed 36 million new domains and listed 1.8 million domains. In a surprising turn of events - “apple” dropped out of the Top 20 phishing terms! Meanwhile, TLD .top’s (#2) poor abuse handling performance prompts a letter from ICANN. Read the full report here ... Read More

10 DNS best practices to keep your Domain Reputation in check

| | dns, Domain reputation
Poor DNS hygiene can leave your organization vulnerable to threats like subDoMailing, DNS spoofing, domain hijacking and other threats. In addition to putting domain security at risk, these vulnerabilities can have long-term effects on domain reputation. Here are ten DNS best practices businesses can implement to protect their domains and ... Read More