In November 2013 accredited registrars received 123 requests from Group-IB on removal from delegation of domain names-violators, as a result 117 domain names were removed. 6 domain names are delegated, 4 of them were unlocked because owners of the domain names eliminated causes for locking. Unlocking was conducted at the request of CERT-GIB.
The highest proportion of detected domain names-violators falls on botnet-controllers (70%), the lowest - resources that are used to spread malware - (4%).
Work on identifying domains violators is done by Group-IB under the agreement with the Coordination Center on countering unauthorized usage of .RU and .РФ domains. Countering the use of domain names in domains .RU and .РФ for illegal purposes is in the area of expertise of Group-IB. These purposes include phishing, unauthorized access to information systems, spread of malware and also management of networks of infected computers.
Detailed information on how to report a cyber threat or other illegal Internet activity can be found on the Coordination Center web page.
