A new deceptive tactic is emerging online: fraudsters are now actively purchasing expired domains of official companies to mislead Russian internet users. This sophisticated method aims to exploit established trust and website reputation for illicit activities.
Cybersecurity experts from Bi.Zone have meticulously detailed this novel online fraud scheme. They explain that cybercriminals diligently monitor domains whose registration is nearing its expiration. Once a domain lapses, they acquire it for their malicious purposes. “Any type of website can be a potential target, ranging from a residential complex`s informational page to a professional`s online portfolio,” a company representative stated. By leveraging the domain`s pre-existing audience and established reputation, these scammers subsequently host prohibited or otherwise malicious content on the reacquired domains.
Understanding the Risks: Phishing and Unauthorized Access
Bi.Zone specifically warns that these fraudulent resources are frequently disseminated through targeted phishing email campaigns. Should a victim open such an email and inadvertently click on a malicious link, fraudsters could potentially gain unauthorized access to the user`s device, compromising personal data or system integrity. “In more advanced, though less frequent instances, attackers engineer phishing domains that are designed to perfectly mimic official registrar or hosting provider websites. Their ultimate goal in these scenarios is to steal victims` sensitive login credentials,” the company further clarified, emphasizing the diverse tactics employed.
Safeguarding Against Domain Exploitation
To proactively protect against these sophisticated scams, Bi.Zone strongly advises companies to meticulously track their domain expiration dates and ensure all renewals are completed promptly. This essential preventative measure is crucial for safeguarding digital assets from being re-purchased by malicious actors and is vital for mitigating significant reputational damage. Furthermore, specialists underscored the critical importance of maintaining accurate and current data in all registered domain information. Should a legal entity cease its operations, it is imperative to swiftly re-register the domain under a new, appropriate administrator to prevent its falling into the wrong hands.
This urgent warning comes shortly after Bi.Zone previously uncovered another prevalent scam tactic. Earlier reports indicated that fraudsters were targeting Russian citizens with enticing offers that promised exceptionally high interest rates on deposits and other seemingly lucrative investment opportunities, preying on financial anxieties and aspirations.
Clement Ashworth 
Barnaby Whitfield