Service Providers
Bulletproof Hosting: Cutting off the facilitators
Behind every bulletproof host sits a chain of facilitators: IP address brokers, network carriers, and datacenters whose services are essential to keeping criminal operations online. This post explores how Spamhaus targets those ...
Botnet Spotlight: Pressure rises on botnets — but the fight is far from over
Momentum is building in the fight against botnets, as network operators and law enforcement ramp up crackdowns on botnet infrastructure, malware, and bulletproof hosting providers. While major takedowns show progress, cybercriminals are ...
Botnet Threat Update July to December 2025
Botnet Command & Controller (C&C) activity increased 24% this period, with Remote Access Trojans (RATs) accounting for 42% of the Top 20 malware associated with botnets. Learn which Russia-based registrar saw a ...
The anatomy of bulletproof hosting – past, present, future
Few cybercrime enablers are as crucial and notorious as bulletproof hosting. However, despite its importance, reporting is often domineered by sensationalism and tabloid-style “infotainment.” For those seeking more prosaic coverage on this ...
Traffic Distribution System (TDS) abuse – What’s hiding behind the veil?
Those who follow the DNS abuse landscape closely may have noticed a rise in activity and abuse reports related to TDS. The use of this infrastructure for malicious purposes is becoming increasingly ...
Domain Reputation Update April – September 2025
Over the last 6 months a total of 43.5 million new domains were registered — 75% of them gTLDs — with .top (+94%) and .xyz (+103%) among the top three. Domain listings ...
Botnet Threat Update January to June 2025
Botnet activity increased by 26% this reporting period; the first increase we've observed for over 18 months. Five new malware families entered the Top 20, and disappointing increases for a number of ...
Spamhaus’ take on Cold Emailing…AKA spam
Cold emailing, as it’s practiced today, is spam — for inboxes, businesses, and the internet. It’s a thriving industry, but one raising concerns in the email community. In this article we define ...
Abuse takes its “toll” on .top: But who is paying the price?
Despite ICANN issuing a formal notice to .top citing a breach of contract for failing to address DNS abuse, the situation has not improved. Over the last six months, abuse of .top ...
Domain Reputation Update Oct 2024 – Mar 2025
New domains are up 7.39%, with 2.9 million malicious domains detected. Chinese gambling sites dominate the Top 20 TLDs, while .top remains a hotspot for abuse - this time with a spike ...
