In August, Group-IB sent accredited registrars 101 notices to remove domain names that were in violation. As a result, 80 domain names were taken down.
Of the remaining 21 delegated domains, three were not blocked as their administrators quickly resolved the problems, and 16 more were unblocked after their owners addressed the violations through the standard procedure. The decision to unblock the domain names was made following an appeal from CERT-GIB. No action so far has been taken regarding two domains.
Most malicious domains are flagged for malware (65%), while a small part (2%) is managed by botnet controllers.
