Group-IB within the framework of the agreement with Coordination Center on preventing an unauthorized use of domains .RU and .РФ presented a new report on the results of the activity as a competent organization. The document specifically reflects the results of Group –IB interaction with accredited registrars for ccTLD .RU and .РФ and it also contains detailed statistics for November 2012.
In November the specialists of Group-IB sent 1053 requests to stop delegating malicious domain names. The actions taken jointly with the registrars resulted in neutralization of 1021 malicious domain names. The administrators of the left 32 domain names eliminated the cause of the violations which allowed them to avoid blocking.
It is worth mentioning that sending of this record number of requests has been unique for the period of Group –IB activity as a competent organization. This fast growth in the number of detected malicious resources is connected with the launch of the specialized service Antiphishing.ru at the end of October. It is designed for effective acquisition and processing of information at any website that causes any suspicion of the users.
For regular tracking of TLDs .RU and .РФ assumed to be used in malicious schemes, Group-IB uses several ways of information acquisition. Internet users may inform about malicious resources through a web-form, e-mail, or 24 hours phone service +7 (495) 988-00-40. Moreover, Group -IB uses data received from the clients and partners as well as information collected by resource Antiphishing.ru and automated information system, providing uninterrupted announcing of malicious resources from main public data bases.
This comprehensive monitoring of Russian domain zones .RU and .РФ allows for planned decrease of malicious activity and effective counteraction to violations in Runet.
