United States
turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Cybercrime Frontline Blog

Article Options

New Internet Domains: A Security Perspective

by on ‎06-30-2011 03:55 PM

 

Recent media headlines have focused on the dramatic expansion of new Internet “generic top level domain names” or “gTLD”. gTLD domain names are the names to the “right of the dot” in Internet addresses (for example: .com).  These will now be joined by many other new name domain extensions.  While most news stories have focused on the impact of this change on business and technology, the effect of these new domain names on security is also very important to understand. 

 

Innovation and new technologies are welcome additions to the Internet landscape, but they also increase the need for cybersecurity awareness.  Part of good cybersecurity practices is to always look at a website address to confirm it is the intended destination.  In Symantec’s most recent Internet Security Threat Report, it was highlighted that cybercriminals are increasingly using shortened web address links to confuse potential victims.  With the addition of so many new domain names, it will be even more difficult for Internet users to visually look at an Internet domain name address to confirm it is the correct destination, let alone whether it is safe.  This increases the importance of using website reputation services, such as Norton Safe Web, to determine if a particular site is a safety risk before you visit it. There are a lot of unsavory websites out there, and the addition of so many more domain names requires heightened user awareness.

 

For several years, I worked at a large Internet domain “Registry”.  A Registry is a company that manages a top level Internet domain name (such as .com).  Part of my responsibility was to design and manage the security program for the domain.  While this program proved very successful, it also demonstrated the infamous “whack-a-mole” problem.  Cybercriminals avoided the domain I managed, but targeted other domains with weaker security policies.  Most new domain companies will be legitimate businesses, and there also are substantial policies being implemented to require strong security in the new domains.  However, just as some current domain registries with weak security policies are targeted by cybercriminals, we may see some of these new registry companies take time to fully implement their security programs. This could be an invitation for cybercriminals to target consumers.  These new domains, especially as they get started, will likely be targeted by creative cybercriminals trying to exploit new vulnerabilities and attack consumers.  It will be more important than ever for Internet users to maintain careful security practices to guard against any new threats that may appear.

 

Finally, an important question to consider is how the new domain names will effect law enforcement.  This question is better considered in the “big picture” of all new technology.  Cybercriminals traditionally have targeted new devices and technology products that can be used to pursue consumers.  Mobile devices are an example of a great technology that benefits everyone, but which are increasingly being targeted by cybercriminals to reach new victims.  Even great new technology can become a platform for abuse by a cybercriminal.  New domain names are really just the latest technology change or innovation that also creates new challenges for law enforcement.  The new domains require that law enforcement now adapt to a vastly expanded online landscape that also expands the threat landscape for cybercrime.  This highlights the need for continuous industry cooperation to help train law enforcement personnel so they are armed with the best understanding of new technology and how to combat online fraud and abuse.  This goal is at the heart of the Norton Cybersecurity Institute training program for law enforcement.

 

New technologies that increase the online user experience, also can bring new challenges in the fight against cybercrime.  Technology changes fast, and cybercriminals move at the speed of light to adapt to it and use it for abuse.  The new domain names are not a reason for Internet users to be afraid.  For the last five years, I have been involved in helping recommend some of the security practices for Internet domain names and there are many others who are working to ensure strong security across every new domain name.  However, this significant change in the Internet is also an important reminder for everyone to maintain good security practices and keep updated security software.  This is the best way to stay safe while also enjoying all the great benefits the Internet has to offer.

 

 

0 Kudos
Comments
by ShinYokoyama on ‎09-21-2012 08:33 AM
Options

Well im either a moron or every new computer ive boutht or seen this year have 3rd party malware if thats what you want to call it.I think its much worse,its idden pretty well.What ever there doing your computer is totally controled by a server.I have tried to get rid off the problem  but its no use.I took it to staples where i bought it they garenteed me they could fix it, after 4 failures the tech told me to talk to the maneger to see about getting my money back $200.00 worth.Now the easy way to see if u have this problem is to go to the start menu you know to the bottom left the microsoft icon.Click on,then in search box type msconfig,When the box pops up go to boot and click,next click on advanced,now if you have multiple proccesors,you will see that it only runs on 1 dual or quad core.Then go back to the boot page and click where it says where it will show you the boot log on start up.If you have a 64 byte proccessor you will notice that all it will load at start up are 32 byte drivers.What happens is your grand new computer is running windows XP service pack 2.All this bull you will see shhowing you that all is well is computers lap or desk all brands toshiba,Acer,dell,or hp have the bug.It is horible they have printer and fax and use your email to take info.You are hooked up to a server all your microsoft updates any anti virus you try to load looks like it loaded right but what really happens is all the data gets stoped then they will stall with all kinds off stuff untill the server can rewrite it then it goes thru.IF you see alot off dll lang you are screwed.The down maneger i have seen looks like a brown bag with a Nortons icon on it and it will make u use it or you wont bee able to down load Any anti virus.And the Free trial nortons will controle your computer.They suck u p inter net data because all updates fail the approved or not they sneak in cuonterfit updates.I know because i have to use 4G broadband and it costs me a fortune.I could go on and on but i will leave it at this.The malware or what ever you want to call it is controled by a server and it writen into your software we dont stand a chance.If you use your computer for more then facebook and emails do your self a favor and buy it from a manufacture store.You will pay more but you will get what they say you are getting.This 3rd party stuff it looks like you are getting one thing and you are getting counterfit garbage made to steal info so  they can sell it to online buisnesses.And tou will see alot off spam, thatsif your lucky.Just think what they can do when the have access to your password any everything else.Now what i wrote doesnt even come close to whats going on.I would be here for days to tell all.Well i hope im wrong but i dont think i am .Well i hope this helps good luck.   shinji1957@gmail.com

0 Kudos
About the Author

Products

Services

Support

Norton on Facebook
Norton on Twitter
Norton's YouTube Channel
Symantec on Linked In
Norton on Google+