In July, competent organizations sent 706 requests to registrars to block domain name delegations, which is 151 more requests than in June. The data was quoted in a report on competent organizations’ activities in July 2019.
The delegation of 691 domain names was blocked or cancelled in July. In 11 cases, cancellation turned out to be unnecessary because the cause of blocking a domain name was quickly eliminated (or the website was blocked by the hosting provider) or because the administrator quickly confirmed the domain’s identification data. In four cases, the registrar did not find enough evidence to cancel the delegation or initiate an administrator identity check.
As of today, 659 remain blocked. In 32 cases, the delegation was restored upon a petition from the complaining organization once the reason for blocking was removed.
An analysis of malicious activities by violating domains during the reporting period in question showed that most of them were related to phishing (634 requests), followed by resources used to spread malware (31), botnet controllers (21 requests), and resources containing child pornography (11 requests). Another nine requests were made to initiate an identity check of the administrator.
The Coordination Center for TLD .RU/.РФ began its cooperation with organizations working with violations on the internet in 2012. These companies provide the Coordination Center and accredited registrars with information on resources with illegal content, phishing activity, unsanctioned access to information systems and the spread of malware through the .RU and .РФ domain names. Registrars have the right to cancel the delegation of such resources.
As of today, ten competent organizations cooperate with the Coordination Center: National Computer Incident Coordination Center, Safe Internet League, Group-IB, Kaspersky Lab, RU-CERT, the Regional Public Internet Technology Center, the Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor), Doctor Web, BIZon and the Bank of Russia. Any user can report malicious use of a domain via their hotlines, and they will take measures immediately. The request processing details are included in the responsible organizations’ 2018 report published on the Coordination Center for TLD .RU/.РФ website.