Fortra, a company providing information security services to large corporate clients, has published its report for Q2 of this year. It records a significant increase in the number of threats associated with attempts by attackers to pass off their resources as legitimate resources of copyright holders. According to the Information Security Buzz, the number of detected fake sites mimicking the sites of various well-known brands has increased by almost 50% compared to the Q1. May was especially "fruitful" in this regard, when the brands of Fortra's client companies accounted for an average of 11 fake sites. Such sites are usually used by attackers to steal personal data of visitors, phishing, and distributing malware.
The number of registered domain names similar to the domains of brands that are Fortra clients has also increased. Here, the highest figures were also recorded in May, when the average number of such domains per brand exceeded 80. However, the average figure for the quarter is also high - 73 fake "clone" domains per brand. Fraudsters are increasingly using new generic top-level domains for registration, primarily .DEV and .VIP. However, the "old" domain zones - .COM, .NET and .ORG - remain the leaders. Thus, the .COM domain accounts for almost 40% of all phishing registrations detected by Fortra solutions. But to the credit of the registries of the "old" domain zones, it should be said that they are actively combating domain abuse: the share of these domains in the total volume of malicious activity has decreased by 7% compared to the previous quarter.
