Identity Digital (former Donuts) has announced that it will publish quarterly reports on received complaints on DNS abuse in domain zones under its control. The first report has already been published and sums up the results of Q3 of this year. According to the report, during this time, the registry received 3,007 reports of various types of illegal use of the DNS system. The messages concerned a total of 3,816 unique domain names, representing only 0.024% of all domain names under the company's control.
Domain Incite, reporting this news, draws attention to the fact that the vast majority of all complaints - almost 93% - phishing activity. But the number of cases of intellectual piracy and copyright infringement, contrary to expectations, was extremely low. Thus, at the request of the American Association of Film Producers, only 6 domain names were blocked over the past 3 months.
The situation is similar with requests to disclose registrants' Whois data. During the quarter, the registry received only 44 such requests, and only 2 of them were related to copyright infringement. Basically, requests were sent by those wishing to purchase a particular domain. 18 requests were rejected due to incorrect drafting, 23 were denied satisfaction as unreasonable (the desire to buy a domain is just not the basis for disclosing the data of its registrant), thus, the registry satisfied only 3 requests.
Returning to cases of abuse, it should be noted that in most cases the problems were resolved at the level of registrar companies, hosting providers and registrants themselves. However, the registry itself also blocked 746 domain names during the quarter.
The Coordination Center for TLD .RU/.РФ publishes such reports on a monthly basis: this is the result of the interaction of accredited domain name registrars in the .RU and .РФ domains with competent organizations - companies that provide the Coordination Center and accredited registrars with information about resources with illegal content, about cases of phishing, distribution of malicious programs and other violations using domain names in the .RU and .РФ domains. If we summarize the data for the Q3 of 2022, then the results will be almost similar to those received by the Identity Digital registry: out of 4234 requests received by Russian registrars during this period, 4069 or 96% were phishing complaints. All reports and other information related to the security of the Russian domain zones .RU and .РФ are published on the website “доменныйпатруль.рф”.
In addition, the website of the Netoscope project quarterly publishes reports on malicious resources found by project participants on the Internet. So, in the Q3 of 2022, 5590 new domains were added to the project database, 5318 of which belong to the “phishing” category.