Loading...
> >

Off Topic: Google selling zip and mov domains, possible security risk

BeeMKayBeeMKay Posts: 7,019
edited May 2023 in The Commons

Just a heads up:

Google is selling domains with a zip and mov ending, like example.zip or example.mov.

i.E the zip ending is easily confused with a regular file ending, and you can fake a legit looking https-URL with it.

Check out: https://www.malwarebytes.com/blog/news/2023/05/zip-domains

 

Post edited by BeeMKay on

Comments

  • WendyLuvsCatzWendyLuvsCatz Posts: 38,230

    that's crazy and I can see how that would get people 

  • FirstBastionFirstBastion Posts: 7,764

    It does seems sometimes that our reality has gone awry.  We live in strange times.  What the heck happened to some common sense???

  • kwerkxkwerkx Posts: 105

    For research purposes... the domain names xxx.mov, and download.zip are already taken.  Let's hope it's a white hat who'll sit on the later forever. Having said that, vacation.mov or holiday.mov would cost close to 1300 USD each.. wow!  That price would be ok for a grey scheme; but a lot for a bad actor to invest in something that is HIGHLY visible and can be taken down by the authorities with NO refund given.  Hmm.. the domains 26dec01_family.mov or afbd987.mov cost about $19 a year, so the threat is real.  Looks like dictionary words are priced at a premium which mitigates the threat a little; but as I understand it, the better "bad" domains are stolen ones still registered to someone else.  

    TL;DR: As corpo decisions go.. "Money's too good. I got stupid" Jane (2002).. pretty much sums it up.

     

  • backgroundbackground Posts: 415

    Maybe the .zip and .mov domains can be added to a blacklist. Too bad for anyone who buys one for legit reasons.

  • BeeMKayBeeMKay Posts: 7,019

    Yes, I was, like "WHAT?!?" when I stumbled across this. I asked the IT-Tech guy at the company I work at, if he had heard about this, and he hadn't, so they are checking out now if we have any inviting doors to our system opened here.  

  • McGyverMcGyver Posts: 7,053
    edited May 2023

    WTAF?... Crack is wack... Don't do drugs... apparently Google didn't get that memo.

     

    Also thanks for the heads up.

    Post edited by McGyver on
  • xyer0xyer0 Posts: 5,947

    FirstBastion said:

    It does seems sometimes that our reality has gone awry.  We live in strange times.  What the heck happened to some common sense???

    CERN opened a dimensional portal. 

Sign In or Register to comment.