Group-IB, a security company, has partnered with the Coordination Center to help tackle cybercrime in .RU and .РФ, and has presented a monthly report on fighting the malicious activities in Russia's national top-level domains. In December 2012, Group-IB filed 311 reports to the registrars, with 10 domains later redelegated as their owners removed the malicious content in question.
According to the Group-IB report, the major part of the domains reported to registrars (58%) pointed to malware. Only 3% of the reported domains were used in controlling botnets.
Group-IB's competences involve tackling cybercrime in Russia's national TLDs, including phishing, unauthorized access to third-party networks, spreading malware, as well as controlling botnets. To detect domains used in malicious activities, Group-IB uses a set of proactive and reactive methods. In particular, any Internet user can report malicious websites to CERT-GIB, the computer emergency response team based in Moscow. Group-IB's Antiphishing.ru and an automated system that collects data on malicious websites also help the center to respond faster, making the Internet safer for Russian-speaking users. CERT-GIB processes every user report, and, in case the alleged incident is taking place, notifies the registrar.
If you want to report cyberthreats and.or malicious activities, please refer to the list of security hotlines at the Coordination Center website.
