Recently, Google Registry released 8 new gTLDs, which included .dad, .phd, .prof, .esq, .foo, .zip, .mov, and .nexus. Each gTLD has a different target audience, but what is more important is how users should not use them.
(https://cdn.arstechnica.net/wp-content/uploads/2023/05/zip-mov-tld-google-800x450.jpg)
While some of the gTLDs like .dad and .phd seem to be innocuous, others like .mov and .zip are already being exploited for phishing scams. These gTLDs have valid file extensions, which are familiar to most internet users, and thus, their guard might be lowered when encountering these domain names thinking they are actual files.
This makes it challenging for people to distinguish between a zip file and a domain name linked to a website. It is also easier for attackers to deliver harmful content through these gTLDs. With this in mind, it is possible that .mov and .zip could become two of the most exploited and blocked gTLDs in the upcoming weeks and months.
Google Registry's new gTLDs (generic top-level domains) include .zip and .mov, which can be used for various purposes, including phishing. Phishing involves the attempt to deceive individuals by posing as a trustworthy entity in order to acquire sensitive information such as login credentials, credit card details, or personal information.
The .zip domain is commonly associated with compressed files containing multiple files or directories. However, it can also be used in phishing attacks where scammers send malicious .zip files through email attachments or links. These files may appear harmless but can contain harmful executable files or malware that compromise the recipient's device and allow unauthorized access.
On the other hand, the .mov domain is primarily associated with video file formats. While it is not as commonly used in phishing attacks compared to other domains, scammers can still use it to host deceptive content or direct users to malicious websites disguised as legitimate ones. This can trick unsuspecting users into providing sensitive information or downloading harmful files.
Both .zip and .mov domains can be attractive to scammers because they can appear familiar and authentic, making it easier to deceive victims. To mitigate the risk of falling victim to phishing attacks, it is important to stay vigilant when interacting with any links or attachments received through emails or unfamiliar websites. Additionally, regularly updating security software, practicing safe browsing habits, and being cautious about sharing personal information online are all essential steps in protecting yourself from phishing attempts.
here are some additional details about .zip and .mov domains in the context of phishing:
1. .zip Domain:
- The .zip extension is commonly used for compressed files that contain multiple files or directories.
- Phishing attacks utilizing .zip files typically involve sending emails with malicious attachments or links to download seemingly harmless .zip files.
- These files may contain malware, viruses, or other harmful executables that can compromise the recipient's device.
- To stay protected, it is advisable to exercise caution when opening .zip files from unknown sources, especially if you were not expecting any such file.
2. .mov Domain:
- The .mov extension is primarily associated with video file formats, commonly used by Apple's QuickTime technology.
- While not as frequently exploited for phishing as other domains, scammers can still use .mov domains to host deceptive content or redirect users to fake websites.
- This can be achieved by sending phishing emails that appear to contain video attachments or using deceptive links that direct users to spoofed websites.
- It is important to be cautious while interacting with emails or links involving .mov extensions, especially if they come from unfamiliar or suspicious sources.
Here is some more information about .zip and .mov domains used for phishing:
1. .zip Domain:
- The .zip file format is commonly used to compress files and folders into a single archive.
- Phishers may use the .zip domain to trick users into downloading malicious files or visiting compromised websites.
- They might send emails with spoofed sender addresses, claiming to contain important dоcuments or invoices in a .zip file attachment.
- These attachments can carry malware, ransomware, or other harmful scripts that can infect the recipient's device once opened.
- It is important to exercise caution when receiving unexpected .zip file attachments, especially from unknown sources.
2. .mov Domain:
- The .mov file extension is associated with Apple's QuickTime video format.
- While not as commonly targeted by phishers as other domains, scammers can still use .mov domains to deceive users.
- Phishing attempts involving .mov domains can include emails claiming to have video attachments or links to watch videos online.
- Clicking on these attachments or links could lead to the download of malicious files or redirect users to fake websites.
- To stay safe, it is advisable to be wary of unsolicited emails claiming to have video content and to verify the legitimacy of any website before providing personal information.
In summary, both .zip and .mov domains can be exploited by phishers to deceive users and distribute malicious content. It is important to remain vigilant, exercise caution when dealing with unfamiliar files or links, and adopt best practices for online security to protect yourself from falling victim to phishing attacks.
Who thought it was a genius move to greenlight domains that scream "file extension" and beg to be weaponized by phishing scumbags?
These TLDs are a dumpster fire waiting to happen, and they're gonna get blackholed faster than a noob's first site. Cyber jerks are already having a field day, and I'm not shocked - Google just handed them a cheat code to scam clueless users.