79 million malicious domains so far this year
According to a new Akamai analysis, the company's experts classified about 79 million domains as dangerous in the first half of 2022; based on a newly observed domain (NOD) dataset, this is about 13 million malicious domains per month, representing 20.1% of all the successfully resolved NODs.
According to Akamai, a NOD is any domain queried for the first time in the last 60 days. And by "malicious," it means a domain name that leads to a site meant to phish, spread malware or do some other kind of damage online.
Akamai said, "[The NOD dataset] is where you find freshly registered domain names, typos, and domains that are only very rarely queried on a global scale." The company observes about 12 million new NODs daily, of which slightly more than 2 million are successfully resolved.
Akamai compiles list of dangerous NODs
The organization uses relatively simple procedures to determine whether a domain is harmful or not. With the assistance of the larger cybersecurity community, Akamai compiled a 30-year predictive list of known domain generation algorithms (DGAs) that may be used to detect domains registered with DGAs.
Since DGA domains may be created in quantity for even temporary campaigns, hackers frequently use them to distribute malware and host phishing pages. Think of DGAs as places on the internet where malware and other things can meet up and use them.
According to the company, most of Akamai's malicious domain detections come from the "more than 190 NOD-specific detection criteria" it employs for NOD-based detection. They also mentioned that among the 79 million malicious NODs discovered in the first half of the year, there were only 0.00042 percent false positives.
There are other options than Akamai's NOD detection, such as Cisco's "newly seen domain" detection system, which scans DNS data and alerts users to potentially dangerous websites.
My perspective
Although it's unclear how those services stack up against Akamai's, their end objectives seem to be comparable and indicate that NODs are a well-known security issue that other businesses are seeking to address. The next thing to see is the lists used to armor businesses with AI that uses that information.
You can just hear the robot saying:
"Danger, Will Robinson!"
By Denis Wilson
Thanks for reading this post. I always take into mind that your time and attention are precious. And these posts need to be timely, to the point, and short.
For more tips on thriving with small business technology, check out the other blog posts at DWPIA Blogs. You can also find me on LinkedIn, Facebook, and Twitter.
I am also a published author and speaker on cloud computing, work-at-home, and cybersecurity. I work extensively with business and professional associations to provide free small business technology education programs.
Contact me if you would like me to speak to your association
