Cybercriminals and scammers are looking to use malicious COVID-19 related websites to spread misinformation or otherwise affect users, and concerns are growing that domain name registrars aren’t doing enough to crack down on these attempts, according to an article in The Washington Post. To demonstrate the potential for such exploitation, researchers at Digital Citizens Alliance, an Internet safety non-profit, recently purchased various coronavirus-related domains with misleading names from major registrars like GoDaddy and Google Domains.
Of the ability to purchase these domain names, Google spokesperson Alex Krasov said to The Washington Post, “We regularly scan registrations using account signals and review all reports of possible abuse. If we find that a domain name registered through Google Domains violates our Terms of Service, we may suspend, cancel or terminate the domain and associated account.”
Digital Citizens was also able to purchase domains with misleading names from domain reseller DigitalAgents. Ryan McKegney, chief executive for DomainAgents, said to The Washington Post, “Covid hadn’t been on our list of exclusions, but with the amount of misinformation that is floating around, the point is taken and we will train our Customer Service Representatives to watch for it and exclude the purchase of covid-related terms going forward.”
Says Senator Mazie Hirono (D-Hawaii) pointed to company negligence in these matters. “Too many of these companies put their heads in the sand while criminals use their services to prey on the public, even when criminal intent is clear in the domain name itself,” Hirono told The Post. “Domain name registrars need to take responsibility and stop enabling scams perpetrated on the public.”
Source:
