Lord777
Professional
- Messages
- 2,579
- Reaction score
- 1,510
- Points
- 113
In early May, Google introduced eight new top-level domains (TLDs) for free registration: .dad, .esq, .prof, .phd, .nexus, .foo, as well as domains.zip и.mov. Information security predict that domains are popular among Internet scammers because their names correspond to popular file extensions. In addition, it is easy to get confused in the names.
These schemes are not a theory, such deceptions are already being played out in the network. Silent Push Labs has discovered a phishing page on microsoft-office[.] zip that attempts to steal credentials for Microsoft accounts.
But let's really assess the situation. Over the past month, cases of domain registration have become more frequent.zip files associated with the names of common ZIP archives: update.zip, financialstatement.zip, setup.zip, attachment.zip, officeupdate.zip and backup.zip. One half is used to display information about the risks of the ZIP zone, while the other half is filled with rickrolls, memes, and other harmless content.
New domains do not carry any dangers that would not have existed before — this is the point of view of Google employees.
The principles of protection against phishing, even with the use of new domains, are still the same:
The crux of the confusion with .zip and .mov files
Domains.zip and mov appeared back in 2014, but only now they are available to everyone. Files with zip and mov extensions have probably been found by every computer user. The first one is a standard for archives, and the second one is one of the most popular containers for video. Now files that are mentioned on the web (in personal correspondence, in comments, on forums) will be perceived by the system as a site and converted to URLs.A loophole for scammers?
For example, in your blog, you publish an article with instructions on how to open ZIP files. The computer converts the mention of the archiver to a URL. Scammers currently own a domain with this name. Readers who see the "link" go to a phishing site and become a target for hackers or download malware to their PC.These schemes are not a theory, such deceptions are already being played out in the network. Silent Push Labs has discovered a phishing page on microsoft-office[.] zip that attempts to steal credentials for Microsoft accounts.
Opinions are divided
Information security specialists and IT specialists argue about how dangerous free access is and what the consequences may be. According to the idea of Google, domains are needed by "techies", ordinary users are unlikely to get to them.But let's really assess the situation. Over the past month, cases of domain registration have become more frequent.zip files associated with the names of common ZIP archives: update.zip, financialstatement.zip, setup.zip, attachment.zip, officeupdate.zip and backup.zip. One half is used to display information about the risks of the ZIP zone, while the other half is filled with rickrolls, memes, and other harmless content.
New domains do not carry any dangers that would not have existed before — this is the point of view of Google employees.
The principles of protection against phishing, even with the use of new domains, are still the same:
- Before you click on the link, check it carefully, in fact - "see where you are going";
- Do not click on links received in emails from strangers — any click on the link in the email can be dangerous;
- Secure your devices and use modern methods of Internet protection – antivirus software from well-established manufacturers, such as Kasperky or Dr. Web.