Credit: Image credit: flickr/David Sanchez
Wouldn't it be convenient if all the spam and malware sites were all grouped together under one top-level domain -- .evil, say -- so that they would be easy to avoid? According to a new study from Blue Coat, there are in fact ten such top-level domains, where 95 percent or more of sites pose a potential threat to visitors.
The worst offenders were the .zip and the .review top-level domains, with 100 percent of all sites rated as "shady," according to the report.
The report is based on an analysis of tens of millions of websites visited by Blue Coat's 75 million global users. In order to protect its customers, Blue Coat has a database where it ranks websites on whether they have legitimate content, or malware, spam, scams, phishing attacks or other suspicious behaviors.
"I don't think I've ever personally found a legitimate .review site," said Chris Larsen, malware research team leader at Sunnyvale, Calif.-based Blue Coat Systems, Inc.
Four more top-level domains had 99 percent malicious sites -- .country, .kim, .cricket, and .science.
Larsen recommends that companies block all traffic to the worst-rated domains.
Another way that scammers take advantage of some of the new top-level domains is through cyber-squatting.
Several large US companies have been hit by extortionists registering, for example, .sex versions of their domains and offering them back to their targeted companies at an inflated price.
"The bad guys could use these in very misleading ways," he said.
However, neither Congress, nor the FTC, nor ICAAN nor IANA took any measures to address this.
"It was hot-potatoed back and forth," Larsen said.
The reason some top-level domains are so much worse than others is that not all registrars do a good job at filtering out spammers and scammers.
"They gravitate to places where they can get free or very cheap domains, no questions asked," he said.
The domain registrars themselves need to put better controls in place to make it more difficult for malicious users to set up domains.
But there isn't much pressure on them to do so, Larsen added.
"No one is minding the store, as far as we can tell," he said.
Since Blue Coat started publishing reports on individual top-level domains at the beginning of the year, and so far only one -- .xyz -- has taken steps to start cleaning things up.
"We have agreed to start sharing some data back and forth with them, and I'm hopeful that will reduce the number of bad .xyz domains that show up," he said.
The number of TLDs has exploded recently -- between 1985 and 2012, the number of TLDs grew slowly, from five to 22. Today, according to ICAAN, there are 1,054 top-level domains. And ICAAN -- the Internet Corporation for Assigned Names and Numbers -- plans to allow more such domains in the future.
Sign up for CIO Asia eNewsletters.