In June, Group-IB sent accredited registrars 142 notices to remove the domain names of violators from delegation. As a result, 124 domain names were blocked.
Eight of the 18 still active domain names were not blocked due to the prompt response by their owners who eliminated the cause of complaint. Ten more domain names were unblocked after their owners resolved the violations through a regular procedure, and upon the approval of CERT-GIB.
The majority of violators (47%) were caught using malware while botnet controllers accounted for only 9 percent.
Reporting violations is a responsibility of Group-IB under an agreement with the Coordination Center on preventing the unauthorized use of domains .RU and .РФ. Group-IB is in charge of preventing the use of .RU and .РФ domain names for unlawful purposes. These include phishing, unauthorized access to data systems, distribution of malware and botnet control of infected computers.
More details on how to report cyber threats and other unlawful activity online is available on the website of the Coordination Center.