Most Parked Domains Now Serving Malicious Content
Summary
A recent study has found that the majority of parked domains, which are often expired, dormant, or misspellings of popular websites, now redirect visitors to malicious sites distributing scams and malware. This makes direct navigation by manually typing domain names in a browser increasingly risky. Attackers are leveraging these parked domains to spread malware and scams.
IFF Assessment
The increase in malicious content on parked domains presents a significant threat to users and increases the attack surface.
Severity
Defender Context
Defenders need to educate users about the risks of direct navigation and the potential for typosquatting. Monitoring web traffic for connections to known parked domain registrars or suspicious redirects can help detect potential compromises. Consider implementing browser security extensions that can detect and block malicious redirects and domain typos.