#dnsabuse — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #dnsabuse, aggregated by home.social.
-
Allowlisting: Exception Handling for Blocked TLDs
In this article, we discuss how to deal with blocklisting exception cases by using selective allowlisting to complement generalized blocklisting as part of an incident response.
https://interisle.substack.com/p/allowlisting-exception-handling-for
-
WEBINAR 7 MAY 07:00 UTC – APRALO Policy Forum + EURALO – Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation
REGISTER | ADD TO CALENDAR | PERMALINK
On 7 May 2026, at 07:00 UTC, the APRALO Policy Forum and EURALO will host a joint webinar 'Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation'. The selection of this topic was motivated by the recent At-Large Webinar: Overview on DNS A
-
WEBINAR 7 MAY 07:00 UTC – APRALO Policy Forum + EURALO – Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation
REGISTER | ADD TO CALENDAR | PERMALINK
On 7 May 2026, at 07:00 UTC, the APRALO Policy Forum and EURALO will host a joint webinar 'Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation'. The selection of this topic was motivated by the recent At-Large Webinar: Overview on DNS A
-
WEBINAR 7 MAY 07:00 UTC – APRALO Policy Forum + EURALO – Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation
REGISTER | ADD TO CALENDAR | PERMALINK
On 7 May 2026, at 07:00 UTC, the APRALO Policy Forum and EURALO will host a joint webinar 'Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation'. The selection of this topic was motivated by the recent At-Large Webinar: Overview on DNS A
-
WEBINAR 7 MAY 07:00 UTC – APRALO Policy Forum + EURALO – Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation
REGISTER | ADD TO CALENDAR | PERMALINK
On 7 May 2026, at 07:00 UTC, the APRALO Policy Forum and EURALO will host a joint webinar 'Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation'. The selection of this topic was motivated by the recent At-Large Webinar: Overview on DNS A
-
WEBINAR 7 MAY 07:00 UTC – APRALO Policy Forum + EURALO – Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation
REGISTER | ADD TO CALENDAR | PERMALINK
On 7 May 2026, at 07:00 UTC, the APRALO Policy Forum and EURALO will host a joint webinar 'Understanding the Role of Trusted Notifiers in DNS Abuse Mitigation'. The selection of this topic was motivated by the recent At-Large Webinar: Overview on DNS A
-
WEBINAR 29 APR 12:00 UTC – ICANN EMEA: Phishing and DNS Abuse – Operational Blindspots
REGISTER | ADD TO CALENDAR | PERMALINK
On Wednesday 29 April 2026 at 12:00-13:00 UTC the Internet Corporation for Assigned Names and Numbers (ICANN) will host a technical webinar 'EMEA: Phishing and DNS Abuse - Operational Blindspots'.
This presentation examines phishing and DNS abuse through real-world attack cases — traci
-
How to Protect Against Phishy Top-level Domains, Part 2
In a previous article, we explained that risk-averse organizations routinely adopt TLD blocking as a defense against cyber-attacks.
We EMPHASIZED why this is a last resort measure and offered examples of TLDs that were persistently associated with major phishing and scam attacks in CY2025. We also describe how to make an informed TLD blocking decision.
In our earlier post, we explained how organizations or individuals could use Cisco’s OpenDNS service to adopt TLD blocking. Today, we’ll be taking a look at how NextDNS could be used to block TLDs.
https://interisle.substack.com/p/how-to-protect-against-phishy-top-b41
#phishing #cybercrime #blocklisting #tld #domainnames #dnsabuse
-
Feb 26 2026 – At-Large Meets OCTO-SSR
VIDEO | AUDIO | RECAP | SLIDES | ARCHIVE | PERMALINK
On February 26, 2026, ICANN At-Large hosted a webinar 'At-Large Meets OCTO-SSR'. Siôn Lloyd of Office of the Chief Technology Officer (OCTO) Internet Identifier System Security, Stability, and Resiliency Research (SSR) team recapped an ICANN 83 session introducing OCTO-SSR's work. Topics include tools such as ICANN Domain Me
-
WEBINAR 27 MAY 12:00 UTC – What Makes a DNS Abuse Complaint to ICANN Actionable: Insights and Common Challenges
REGISTER | ADD TO CALENDAR | PERMALINK
On 27 May 2026, at 12:00-13:00 UTC, ICANN Contractual Compliance will host a webinar 'What Makes a DNS Abuse Complaint to ICANN Actionable: Insights and Common Challenges'. Case studies will be explored, plus there will be a walkthrough of ICANN's Step-by-Step Guid
-
WEBINAR APR 14 – At-Large – Overview on DNS Abuse Mitigation
REGISTER | ADD TO CALENDAR | PERMALINK
On Tuesday, 14 April 2026, at 13:00-14:15 UTC, ICANN At-Large will host a webinar 'Overview on DNS Abuse Mitigation' to discuss and help shape the At-Large agenda in its combat against DNS Abuse.
DNS Abuse mitigation remains as a key focus area for the ALAC and At-Large community. It is generally accepted that D
-
Mar 9 2026 – ICANN 85 – GNSO: ISPCP Outreach Session
VIDEO | RECAP | ARCHIVE | PERMALINK
On March 9 2026, the Internet Service Provider and Connectivity Provider Constituency (ISPCP ) of the Generic Name Supporting Organization (GNSO) organized an Outreach Session at the ICANN 85 Community Forum in Mumbai. AI-driven analytics are transforming abuse detection and incident response. Thi
#post #2026 #ai #DnsAbuse #GNSO #ICANN #ispcp #UniversalAcceptance
-
If you’re using data from URLAbuse (urlabuse.com), don’t miss our upcoming topDNS Best Practice Series webinar! 🚀
📅 Date & Time: 08 October 2025
🌐 Topic: How is DNS Abuse actually measured?
We’ll cover:
✅ The latest updates to the URLAbuse system
✅ How DNS abuse is measured in practice
✅ A first look at our brand-new platform 🎉Speakers:
Maciej Korczynski (KOR Labs)
Sourena Maroofi (URLAbuse)
Rowena Schoo (NetBeacon Institute)
🔹 Moderated by Lars Steffen (eco – Association of the Internet Industry)
🔗 More details & registration: https://topdns.eco.de/events-archive/topdns-best-practice-series-how-is-dns-abuse-actually-measured/If you work in cybersecurity, DNS operations, or anti-abuse, this is a great opportunity to learn, ask questions, and get a first look at what’s next.
#DNS #DNSAbuse #CyberSecurity #Infosec #Webinar #URLAbuse #topDNS
-
If you’re using data from URLAbuse (urlabuse.com), don’t miss our upcoming topDNS Best Practice Series webinar! 🚀
📅 Date & Time: 08 October 2025
🌐 Topic: How is DNS Abuse actually measured?
We’ll cover:
✅ The latest updates to the URLAbuse system
✅ How DNS abuse is measured in practice
✅ A first look at our brand-new platform 🎉Speakers:
Maciej Korczynski (KOR Labs)
Sourena Maroofi (URLAbuse)
Rowena Schoo (NetBeacon Institute)
🔹 Moderated by Lars Steffen (eco – Association of the Internet Industry)
🔗 More details & registration: https://topdns.eco.de/events-archive/topdns-best-practice-series-how-is-dns-abuse-actually-measured/If you work in cybersecurity, DNS operations, or anti-abuse, this is a great opportunity to learn, ask questions, and get a first look at what’s next.
#DNS #DNSAbuse #CyberSecurity #Infosec #Webinar #URLAbuse #topDNS
-
If you’re using data from URLAbuse (urlabuse.com), don’t miss our upcoming topDNS Best Practice Series webinar! 🚀
📅 Date & Time: 08 October 2025
🌐 Topic: How is DNS Abuse actually measured?
We’ll cover:
✅ The latest updates to the URLAbuse system
✅ How DNS abuse is measured in practice
✅ A first look at our brand-new platform 🎉Speakers:
Maciej Korczynski (KOR Labs)
Sourena Maroofi (URLAbuse)
Rowena Schoo (NetBeacon Institute)
🔹 Moderated by Lars Steffen (eco – Association of the Internet Industry)
🔗 More details & registration: https://topdns.eco.de/events-archive/topdns-best-practice-series-how-is-dns-abuse-actually-measured/If you work in cybersecurity, DNS operations, or anti-abuse, this is a great opportunity to learn, ask questions, and get a first look at what’s next.
#DNS #DNSAbuse #CyberSecurity #Infosec #Webinar #URLAbuse #topDNS
-
If you’re using data from URLAbuse (urlabuse.com), don’t miss our upcoming topDNS Best Practice Series webinar! 🚀
📅 Date & Time: 08 October 2025
🌐 Topic: How is DNS Abuse actually measured?
We’ll cover:
✅ The latest updates to the URLAbuse system
✅ How DNS abuse is measured in practice
✅ A first look at our brand-new platform 🎉Speakers:
Maciej Korczynski (KOR Labs)
Sourena Maroofi (URLAbuse)
Rowena Schoo (NetBeacon Institute)
🔹 Moderated by Lars Steffen (eco – Association of the Internet Industry)
🔗 More details & registration: https://topdns.eco.de/events-archive/topdns-best-practice-series-how-is-dns-abuse-actually-measured/If you work in cybersecurity, DNS operations, or anti-abuse, this is a great opportunity to learn, ask questions, and get a first look at what’s next.
#DNS #DNSAbuse #CyberSecurity #Infosec #Webinar #URLAbuse #topDNS
-
Phishing in the 2020s: Hosting Networks
In previous posts we looked at top-level domains and domain registrars that phishers most exploited over the past 5 years. In this post, we look at the hosting networks (ASNs) with the highest numbers of phishing attacks reported.
https://interisle.substack.com/p/phishing-in-the-2020s-hosting-networks
#phishing #ASN #hosting #cybercrime #dnsabuse #cybersecurity
If you like what you've been reading, subscribe.
-
Case study: How a single spam campaign affects service provider reputation
Matt Piscitello takes a close look at a spam campaign involving bulk registrations during the month of August 2025. He explains how #Interisle establishes evidence of bulk registration behavior, identifies what operators were affected, and discusses aspects of reputational harm resulting from the campaign.
https://interisle.substack.com/p/case-study-how-a-single-spam-campaign
#spam #bulkregistrations #dnsabuse #reputation #cybercrime #interisle
-
Phishing in the 2020s: Phishing Across the Global Name Space
For our phishing landscape reports, we study where phishers go to acquire domain names for their attacks. Today's segment of our Phishing in the 2020s series examines the global domain name space to see whether phishers have preferentially exploited popularly recognized categories of Top-level domains (TLDs) each study period.
https://interisle.substack.com/p/phishing-in-the-2020s-phishing-across
-
WEBCAST MAR 10 – NARALO Roundtable – DNS Abuse and AI: Combatting and Enabling Threats
On Monday 10 March 2025, at 15:00-16:00 PDT (22:00-23:00 UTC) the North American Regional At-Large Organization (NARALO) presents a roundtable 'DNS Abuse and AI: Combatting and Enabling Threats' at ICANN82 in Seattle. This session aims to better understand the emerging capabilities of AI in pattern analysis and machine learning to
-
Interisle Consulting Group has joined the substack community. Here, our partners will share their experience in cybersecurity and cybercrime research, Internet infrastructure and technology, mobility and wireless, policy and governance, patents, and standards development.
We begin with a look at new gTLDs that earned our respect for admirably managing DNS abuse. We identify these “silver linings”, explain how they are differentiated from publicly available new gTLDs, and make a case for ICANN to carefully consider this differentiation as it seeks to complete of policy activity for the New gTLD Program: Next Round in May 2025.
New gTLDs with registration requirements: every cloud has a silver lining
https://interisle.substack.com/p/new-gtlds-with-registration-requirements
We hope that you'll find our 'stack useful and that you'll subscribe as we begin posting regularly.
-
Good Monday all...
Today we've released a study,
Cybercrime Supply Chain 2023:
Measurements and Assessments of Cyber Attack Resources and Where Criminals Acquire Themhttps://interisle.net/CybercrimeSupplyChain2023.html
The major findings of the study are:
• 5M domains identified as serving as a resource for cybercrime.
• 1M domains reported for spam activity were registered in new gTLDs.
• 500,000 subdomain hostnames reported for serving as resources for cybercrime.
• 1.5 million domains exhibited characteristics of malicious bulk domain registration behavior.
• Exact matches of a well-known brand name were used in over 200,000 cybercrime attacks.
• The US had the most IPv4 addresses serving as resources for cybercrime activity. China, India, Australia, and Hong Kong rounded out the top 5.Summary: Reactive efforts currently employed by the domain name and hosting industries, governments, and private sector organizations cannot curtail cybercrime and the harms it inflicts on Internet users.
In the report, Interisle recommends measures that policy regimes, governments, service providers, and private sector working together can implement to disrupt the cybercrime supply chain.
-
My #Interisle colleagues and I recently submitted a response to the UK Department for Science, Innovation and Technology's consultation, Powers in Relation to UK-Related Domain Name Registries (https://www.gov.uk/government/consultations/powers-in-relation-to-uk-related-domain-name-registries).
The consultation seeks input on policies for mitigating domain name abuse and misuse in UK-related top-level domains (TLDs).
We shared findings from our Phishing Landscape 2023 report (https://interisle.net/PhishingLandscape2023.html), and explained why policies and procedures must aim at preventing criminals from maliciously registering names _before_ they are used to perpetrate cybercrimes. We also recommend that the UK use the Council of Europe Convention on Cybercrime's definitions of harmful activities as its basis for defining prohibited uses of domain names, including facilitating multi-jurisdictional abuse mitigation and enforcement.
Our contribution is available at https://interisle.net/UK_DSTI_DNS_Abuse_Consultation.pdf
