Registrars receive 831 requests from competent organizations this January

06.02.2019

There were lots of fraudulent domains this January. During the month, competent organizations sent 831 requests to registrars on the cancellation of domain name delegation. The data is published in the report on the result of the competent organizations’ activities in January 2019. The number of requests almost doubled compared with January 2018. There were about 400 requests from competent organizations per month on average last year.

The analysis of the fraudulent domains’ types of malicious activities during this period showed that most of them were on domains related to phishing (416 requests), followed by botnet controllers (251 requests), resources used to spread malware (151) and one request on a resource with child pornography. Another 12 requests were made to initiate the checking of the registrant’s identity.

The delegation of 831 domain names was cancelled during this period following the requests from competent organizations. As of today, 819 remain blocked, and in 12 cases the delegation was restored on the petition of the corresponding competent organization after the reason for blocking was removed.

The Coordination Center for TLD .RU/.РФ began its cooperation with organizations working with violations on the internet in 2012. These companies provide the Coordination Center and accredited registrars with information on resources with illegal content, phishing activity, unsanctioned access to information systems and the spread of malware through the .RU and .РФ domain names. Registrars have the right to cancel the delegation of such resources.

As of today, nine competent organizations cooperate with the Coordination Center: Safe Internet League, Group-IB, Kaspersky Lab, RU-CERT, the Regional Public Internet Technology Center, the Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor), Doctor Web, BIZon and the Bank of Russia. Any user can report malicious use of a domain via their hotlines, and they will take measures immediately. The request processing details are included in the responsible organizations’ 2018 report published on the Coordination Center for TLD .RU/.РФ website.