In July, Group-IB informed accredited registrars about the removal of offending domain names from delegation on 88 occasions, which is nearly half the figure for June (173). Group-IB has been working to identify offending domains under the agreement to combat the unauthorized use of .RU and .РФ domains signed with the Coordination Center for TLD RU/РФ. Group-IB’s competence includes countering the use of domain names on the second and subsequent levels in the .RU and .РФ domains for illegal aims, including phishing, unauthorized access to information systems, spreading malware and managing infected computer networks (botnets).
Based on Group-IB’s activities, 68 domain names were removed from delegation in July with 20 more now in the delegation process. Eighteen were blocked, but after the violations that caused the sanctions were removed, the blocks were lifted. Two other cases of violations were addressed by the owners so quickly that there was no need to use blocks. Over three-quarters of all identified offending domains (76%) have been implicated in spreading malicious software, and 24% in phishing.
For more information regarding reporting cyber threats and other illegal online activities, please check the website of the Coordination Center.
