Security and Strengthening Online Frontiers: A Deep Dive into Malware Removal and WordPress Protection
Intensifying the fight against online threats, the Chinese firm responsible for assigning domain names ending with “.top” must prove by mid-August 2024 its capabilities in managing phishing reports and suspending malicious domains. Otherwise, it risks losing its license to sell such domains. This ultimatum arises from the revelation that “.top” was the second most frequent suffix in phishing websites over the past year. It trailed closely behind domain names ending in “.com.”
Why the Focus on .top Domains?
On July 16, the Internet Corporation for Assigned Names and Numbers (ICANN), the body that oversees domain name registration, sent a rather stern letter to the Chinese entity managing the .top domain registry. For years, ICANN has filed multiple enforcement actions against domain registrars, but this is a unique case where a domain registry, that maintains an entire top-level domain (TLD) is being spotlighted. The focal point of the communication blamed the registry for not addressing reports about phishing attacks associated with .top domains.
“The .TOP Registry does not have a sound mechanism promptly, comprehensively, and reasonably investigating and acting to reports of DNS Abuse,” stated the ICANN letter.
The recipient’s name was redacted, but records reveal that Jiangsu Bangning Science & Technology Co. Ltd operates .top registry. Defying this critical context, the organization hasn’t reverted to comments or inquiries.
Understanding the Potential Risks Associated with .top Domains
The Interisle Consulting Group in their latest phishing report, states that domains ending in .top have been conspicuously involved in phishing. According to their detailed study of nearly two million phishing attacks over the last year, more than 4% of all new .top domains, between May 2023 and April 2024, were associated with instances of phishing.
This poses a significant challenge in terms of malware removal and the need to protect and restore hacked WordPress sites.
ICANN’s cautioning was based on an intensive review of the data related to .top domains gathered over the preceding weeks. This issue, however, is not a sudden development. The volume of phishing sites registered via Jiangsu Bangning Science & Technology Co Ltd has progressively been a topic of concern for more than a decade. ICANN’s approval of Jiangsu Bangning to introduce and oversee the new .top registry happened more than a year after the identification of the issue.
Evolving Phishing Landscape
With the ongoing evolution in the phishing landscape, there has been an upsurge in fraudulent pages hosted via the InterPlanetary File System (IPFS), a decentralized data storage and delivery network that is based on peer-to-peer networking. The usage of such services that make phishing sites more challenging to taken down has risen by an alarming 1,300 percent.
The perennial menace “com” maintained its dominant position as the main source of phishing domains. This precedes .us domains that were notorious for phishing scams until last year.
With the fall of Freenom, a now-defunct registrar, phishers migrated to newer low-cost TLDs and services that allowed anonymous, free domain registrations, especially subdomain services.
Key Steps Towards Malware Removal and WordPress Protection
Dave Piscitello, partner at Interisle Consulting, suggested that ICANN should constructively send similar warning letters to at least half a dozen more top-level domain registries. He emphasized that swift action towards malware removal, especially for phishing sites that are registered via their services, could significantly fortify the digital domain.
Piscitello believes that flagging consumers who attempt to register enormous volumes of domains simultaneously, a routine seen in at least 27% of domains used for phishing, can serve as a practical measure.
ICANN, however, prefers a more diplomatic approach to resolve contract disputes privately with the registry and registrar community, as reported by domain experts.
“ICANN takes into account that, before issuing any notice of breach to a registrar or registry operator, a thorough contractual compliance ‘health check’ of the relevant contracted party is done,” ICANN claimed in a written response to inquiries.
With the uprise in the phishing culture, malware removal and strengthening platforms like WordPress Protection have never been more crucial. It highlights the need to venture early into preventive measures against online threats and the pressing requirement to restore hacked WordPress sites.
Need security services for your WordPress site? Contact DrGlenn for protection and recovery. Order Services Today!.