Service delivery began in different ways to deal with emerging amid the isolation wave of phishing sites. For example, peck massively buying domains similar to the name of its website to stay ahead of the fraudsters. Other companies consider it “a waste of money” and are on the way blocking fraudulent resources.The courier peck has purchased 48 of the domains in the zone .EN and others so scammers are unable to create phishing sites, told “Kommersant” Director of the security Department PAC Alex Persianov. This practice is used by large international companies, in this case, every newly registered scammers domain is less similar to the original address and the fake is becoming more apparent, he explained.Registration of phishing domains to brands courier services, according to Group-IB, for the last six months grew seven times. Phishing sites peck began to appear from February, said the company and confirm in a Softline Infosecurity, where he counted more than 25 sites that mimic the peck (see “Kommersant” on June 1). During the pandemic was blocked phishing sites 12 peck, discovered by the company.Batch purchasing domains is standard practice with protection from fraud abroad, confirms CEO 101domain.ru Denis Rotanov, but in Russia not everyone does that. If we use the wholesale tariffs of the Registrar, the average price for a domain on the secondary market of approximately $ 10 thousand rubles., retail price — from 10 thousand to 48 thousand RUB, except for the most famous brands, he appreciates. When talking about the primary market, it is about 1 thousand rubles for the address in the Russian domain zones and 1.5–2 thousand rubles. in other, adds the CEO Reg.ru Alexey Korolyuk.The practice of buying similar domains is prevalent in many international companies, including search engines, social networks, shopping sites, says the team Manager to provide services in cyber security and digital forensics at KPMG in Russia and the CIS Sergey Belov. This allows you not to lose visitors who could have made a mistake in the writing of the website, and to protect them from phishing attacks, he says. For example, Sberbank is often registers multiple domains with similar names to protect the business and customers confirmed in its press-service.But the other delivery services do not consider buying domains effective solution. Similar combinations huge amount to redeem it is just impossible, it is a waste of the budget, categorical, Director of IT Boxberry Sergei Kalagin. In his opinion, much more effective, for example, services of specialized services that allow you to block phishing sites within a few days. On average 100-115 Boxberry identify phishing domains every ten days, block manages about 280 per month.Practice purchase similar domains is not in SDEK, the company explains that the number of fraudulent domains is growing exponentially. SDEK has partnered with Group-IB to detect and eliminate such sites before they can exploit customers, wrote “Kommersant” on 1 June.If attackers needed to create a full-fledged phishing resource of a large company, buying domains could be beneficial, says a leading analyst Infosecurity Softline Company Alexander Vurasko. However fake web sites, courier services are usually used in the scheme of fraud on the major trading sites, so the domain in this case, you can fantasize as you like, he says.Buying domains does not solve the problem with phishing sites because its root lies in social engineering, not in the similarity of the domain names, they say in the service “Yula”, noting that block suspicious links and warn the user when he is induced to continue the dialogue in the third-party messenger. They think that it is impossible to get communication with a potential victim outside the service needs to reduce the chance of fraud to zero.Yulia Stepanova
