Why Fraudware is so rampant

I’ve mentioned several times about the explosion of malicious sites that hosts Fraudware … mainly bogus Antispyware programs … one of the main reasons is that the various “ICANN Registrars” continue to register domains that are from known criminal enterprises …

They just seem to turn a blind-eye toward the “Registrant” (domain owner) even though they (ICANN Registrars) have previously shutdown sites that are malicious from the same known bad “Registrant” …

In the above “for777daily.com” has been shutdown (Domain status: on-hold generic) … now notice the “owns 589 other domains”

And here “Shestakov Yuriy” owns 4,332 other domains … but check the email address = same as the example above …

Imagine that … another 2,128 domains and the same email address … so if you add those up = 7,049 domains … and as far as I can tell they are all malicious! … so you have to ask yourself … why after the first few times these culprits get shut down … why are they allowed to register more domains?

Now if you check the above site via Google’s SafeBrowser Diagnostic (moviesportal2008pc.com) it shows the following:

Malicious software includes 1227 trojan(s).

Yes, this site has hosted malicious software over the past 90 days. It infected 276 domain(s)

Until ICANN steps up and puts a stop to these practices, we will no doubt be inundated with malicious sites … many of us in the security field have complained to both ICANN and the hosting service where the malicious domains reside (IP location) … but it does little good … even if they do act, it’s only to shut down a few sites while allowing the same culprits to continue their fraudulent practices …



Comments are closed.