{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,7]],"date-time":"2026-02-07T00:06:55Z","timestamp":1770422815613,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":82,"publisher":"ACM","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,11,19]]},"DOI":"10.1145\/3719027.3744869","type":"proceedings-article","created":{"date-parts":[[2025,11,22]],"date-time":"2025-11-22T23:33:16Z","timestamp":1763854396000},"page":"618-632","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["Exposing the Roots of DNS Abuse: A Data-Driven Analysis of Key Factors Behind Phishing Domain Registrations"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0001-1094-7519","authenticated-orcid":false,"given":"Yevheniya","family":"Nosyk","sequence":"first","affiliation":[{"name":"KOR Labs, Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4334-3260","authenticated-orcid":false,"given":"Maciej","family":"Korczy\u0144ski","sequence":"additional","affiliation":[{"name":"KOR Labs, Grenoble, France and Univ. Grenoble Alpes, CNRS, Grenoble INP, LIG, Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4699-3007","authenticated-orcid":false,"given":"Carlos","family":"Ga\u00f1\u00e1n","sequence":"additional","affiliation":[{"name":"ICANN, Los Angeles, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6661-7503","authenticated-orcid":false,"given":"Sourena","family":"Maroofi","sequence":"additional","affiliation":[{"name":"KOR Labs, Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2619-1103","authenticated-orcid":false,"given":"Jan","family":"Bayer","sequence":"additional","affiliation":[{"name":"KOR Labs, Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-3254-1403","authenticated-orcid":false,"given":"Zul","family":"Odgerel","sequence":"additional","affiliation":[{"name":"KOR Labs, Grenoble, France and Univ. Grenoble Alpes, CNRS, Grenoble INP, LIG, Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-0359-2478","authenticated-orcid":false,"given":"Samaneh","family":"Tajalizadehkhoob","sequence":"additional","affiliation":[{"name":"ICANN, Los Angeles, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6950-6574","authenticated-orcid":false,"given":"Andrzej","family":"Duda","sequence":"additional","affiliation":[{"name":"KOR Labs, Grenoble, France and Univ. Grenoble Alpes, CNRS, Grenoble INP, LIG, Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,11,22]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Operational approaches norms, criteria, mechanisms","author":"Network J Policy","year":"2019","unstructured":"I&J Policy Network. Domains & Jurisdiction Program: Operational approaches norms, criteria, mechanisms, 2019. https:\/\/www.internetjurisdiction.net\/uploads\/pdfs\/Papers\/Domains-Jurisdiction-Program-Operational-Approaches.pdf."},{"key":"e_1_3_2_1_2_1","first-page":"1","volume-title":"TMA","author":"Affinito Antonia","year":"2022","unstructured":"Antonia Affinito, Raffaele Sommese, Gautam Akiwate, Stefan Savage, Kimberley Claffy, Geoffrey M. Voelker, Alessio Botta, and Mattijs Jonker. Domain Name Lifetimes: Baseline and Threats. In TMA, pages 1-9, Austria, 2022. IFIP."},{"key":"e_1_3_2_1_3_1","volume-title":"We are the Top Level Domain (TLD) Registry Services and DNS Solutions Experts","year":"2019","unstructured":"Afilias. We are the Top Level Domain (TLD) Registry Services and DNS Solutions Experts, 2019. https:\/\/web.archive.org\/web\/20191231103541\/https:\/\/afilias.info\/."},{"key":"e_1_3_2_1_4_1","volume-title":"Amazon Route 53 Pricing","author":"Amazon Route","year":"2024","unstructured":"Amazon Route 53. Amazon Route 53 Pricing, 2024. https:\/\/aws.amazon.com\/route53\/pricing\/."},{"key":"e_1_3_2_1_5_1","volume-title":"Unifying The Global Response to The Cybercrime","author":"Anti-Phishing Working Group","year":"2023","unstructured":"Anti-Phishing Working Group. Unifying The Global Response to The Cybercrime, 2023. https:\/\/apwg.org."},{"key":"e_1_3_2_1_6_1","unstructured":"APWG. Phishing Activity Trends Report 2020. https:\/\/docs.apwg.org\/reports\/apwg_trends_report_q2_2020.pdf."},{"key":"e_1_3_2_1_7_1","unstructured":"Cali Dog Security. Certstream March 2022. https:\/\/calidog.io."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.3390\/electronics11081172"},{"key":"e_1_3_2_1_9_1","volume-title":"How to register the CN domain names","author":"CNNIC.","year":"2024","unstructured":"CNNIC. How to register the CN domain names, 2024. https:\/\/www.cnnic.com.cn\/IS\/CNym\/cnymyhfaq\/#3."},{"key":"e_1_3_2_1_10_1","volume-title":"May","author":"European Commission","year":"2018","unstructured":"European Commission. 2018 reform of EU data protection rules, May 2018. https:\/\/ec.europa.eu\/commission\/sites\/beta-political\/files\/data-protection-factsheet-changes_en.pdf."},{"key":"e_1_3_2_1_11_1","volume-title":"amending Regulation (EU) No 910\/2014 and Directive (EU) 2018\/1972, and repealing Directive (EU) 2016\/1148 (NIS 2 Directive) (Text with EEA relevance)","author":"European Commission. Directive (EU) 2022\/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union","year":"2022","unstructured":"European Commission. Directive (EU) 2022\/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union, amending Regulation (EU) No 910\/2014 and Directive (EU) 2018\/1972, and repealing Directive (EU) 2016\/1148 (NIS 2 Directive) (Text with EEA relevance), 2022. https:\/\/eur-lex.europa.eu\/eli\/dir\/2022\/2555."},{"key":"e_1_3_2_1_12_1","volume-title":"Publications Office of the European Union","author":"European Commission","year":"2022","unstructured":"European Commission, Content Directorate-General for Communications Networks, Technology, J Bayer, Y Nosyk, O Hureau, S Fernandez, S Paulovics, A Duda, and M Korczynski. Study on Domain Name System (DNS) abuse \u2013 Technical report. Appendix 1. Publications Office of the European Union, Luxembourg, 2022."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-15512-3_23"},{"key":"e_1_3_2_1_14_1","volume-title":"Framework to Address Abuse","author":"Abuse Framework DNS","year":"2020","unstructured":"DNS Abuse Framework. Framework to Address Abuse, 2020. https:\/\/dnsabuseframework.org\/media\/files\/2020-05-29_DNSAbuseFramework.pdf ."},{"key":"e_1_3_2_1_15_1","unstructured":"DNS Belgium. Registrant Verification 2024. https:\/\/docs.dnsbelgium.be\/be\/general\/registrantverification.html."},{"key":"e_1_3_2_1_16_1","volume-title":"Introduction to DAP.LIVE","author":"DNS Research Federation","year":"2025","unstructured":"DNS Research Federation. Introduction to DAP.LIVE, 2025. https:\/\/dnsrf.org\/docs\/dap-live\/introduction-to-dap-live\/index.html."},{"key":"e_1_3_2_1_17_1","volume-title":"Domain Risk Score","year":"2025","unstructured":"DomainTools. Domain Risk Score, 2025. https:\/\/www.domaintools.com\/resources\/api-documentation\/domain-risk-score\/."},{"key":"e_1_3_2_1_18_1","volume-title":"USENIX Security","author":"Durumeric Zakir","year":"2013","unstructured":"Zakir Durumeric, Eric Wustrow, and J. Alex Halderman. ZMap: Fast internet-wide scanning and its security applications. In USENIX Security, 2013."},{"key":"e_1_3_2_1_19_1","unstructured":"EURid. Know-Your-Customer 2024. https:\/\/eurid.eu\/en\/register-a-eu-domain\/data-quality\/#nav_kyc_project."},{"key":"e_1_3_2_1_20_1","volume-title":"USA","author":"Felegyhazi Mark","year":"2010","unstructured":"Mark Felegyhazi, Christian Kreibich, and Vern Paxson. On the Potential of Proactive Domain Blacklisting. In LEET, page 6, USA, 2010. USENIX Association."},{"key":"e_1_3_2_1_21_1","volume-title":"GoDaddy - Domain Name Proxy Agreement","year":"2023","unstructured":"GoDaddy. GoDaddy - Domain Name Proxy Agreement, 2023. https:\/\/www.godaddy.com\/legal\/agreements\/domain-name-proxy-agreement."},{"key":"e_1_3_2_1_22_1","volume-title":"Websites","year":"2024","unstructured":"GoDaddy. Domain Names, Websites, Hosting & Online Marketing Tools, September 2024. https:\/\/www.godaddy.com\/."},{"key":"e_1_3_2_1_23_1","unstructured":"GoDaddy. Get Started July 2024. https:\/\/developer.godaddy.com\/getstarted."},{"key":"e_1_3_2_1_24_1","unstructured":"GoDaddy. Get Started April 2024. https:\/\/web.archive.org\/web\/20240418021546\/https:\/\/developer.godaddy.com\/getstarted."},{"key":"e_1_3_2_1_25_1","volume-title":"Phishing landscape 2023: A study of the scope and distribution of phishing. Technical report","author":"Interisle Consulting Group","year":"2023","unstructured":"Interisle Consulting Group. Phishing landscape 2023: A study of the scope and distribution of phishing. Technical report, Interisle Consulting Group, 2023."},{"key":"e_1_3_2_1_26_1","volume-title":"Phishing landscape 2024: A study of the scope and distribution of phishing. Technical report","author":"Interisle Consulting Group","year":"2024","unstructured":"Interisle Consulting Group. Phishing landscape 2024: A study of the scope and distribution of phishing. Technical report, Interisle Consulting Group, 2024."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978317"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/2504730.2504753"},{"key":"e_1_3_2_1_29_1","first-page":"5731","author":"Hollenbeck Scott","year":"2009","unstructured":"Scott Hollenbeck. EPP Domain Name Mapping. RFC 5731, 2009.","journal-title":"EPP Domain Name Mapping. RFC"},{"key":"e_1_3_2_1_30_1","volume-title":"USA","author":"Huang Danny Yuxing","year":"2018","unstructured":"Danny Yuxing Huang, Maxwell Matthaios Aliapoulios, Vector Guo Li, Luca Invernizzi, Elie Bursztein, Kylie McRoberts, Jonathan Levin, Kirill Levchenko, Alex C. Snoeren, and Damon McCoy. Tracking Ransomware End-to-end. In IEEE S&P, pages 618-631, Los Alamitos, CA, USA, 2018. IEEE Computer Society."},{"key":"e_1_3_2_1_31_1","unstructured":"IANA. Root Zone Database 2024. https:\/\/www.iana.org\/domains\/root\/db."},{"key":"e_1_3_2_1_32_1","first-page":"2013","volume-title":"2013 Registrar Accreditation Agreement","author":"ICANN.","year":"2013","unstructured":"ICANN. 2013 Registrar Accreditation Agreement, 2013. https:\/\/www.icann.org\/resources\/pages\/approved-with-specs-2013-09-17-en."},{"key":"e_1_3_2_1_33_1","volume-title":"SAC058: SSAC Report on Domain Name Registration Data Validation","author":"ICANN.","year":"2013","unstructured":"ICANN. SAC058: SSAC Report on Domain Name Registration Data Validation, 2013. https:\/\/itp.cdn.icann.org\/en\/files\/security-and-stability-advisory-committee-ssac-reports\/sac-058-en.pdf."},{"key":"e_1_3_2_1_34_1","volume-title":"March","author":"ICANN.","year":"2022","unstructured":"ICANN. Centralized Zone Data Service, March 2022. https:\/\/czds.icann.org."},{"key":"e_1_3_2_1_35_1","volume-title":"DNS Security Threat Mitigation Program","author":"ICANN.","year":"2023","unstructured":"ICANN. DNS Security Threat Mitigation Program, 2023. https:\/\/www.icann.org\/dns-security-threat."},{"key":"e_1_3_2_1_36_1","volume-title":"ICANN's Domain Abuse Activity Reporting (DAAR) Project","author":"ICANN.","year":"2023","unstructured":"ICANN. ICANN's Domain Abuse Activity Reporting (DAAR) Project, 2023. https:\/\/www.icann.org\/octo-ssr\/daar-faqs."},{"key":"e_1_3_2_1_37_1","first-page":"2024","volume-title":"2024 Global Amendments to the 2013 Registrar Accreditation Agreement (RAA) and Base gTLD Registry Agreement (Base RA)","author":"ICANN.","year":"2024","unstructured":"ICANN. 2024 Global Amendments to the 2013 Registrar Accreditation Agreement (RAA) and Base gTLD Registry Agreement (Base RA), 2024. https:\/\/www.icann.org\/resources\/pages\/global-amendment-2024-en."},{"key":"e_1_3_2_1_38_1","volume-title":"ICANN Organization Enforcement of Registration Data Accuracy Obligations Before and After GDPR","author":"ICANN.","year":"2024","unstructured":"ICANN. ICANN Organization Enforcement of Registration Data Accuracy Obligations Before and After GDPR, 2024. https:\/\/www.icann.org\/resources\/pages\/registration-data-accuracy-obligations-gdpr-2021-06-14-en."},{"key":"e_1_3_2_1_39_1","volume-title":"Monthly Registry Reports","author":"ICANN.","year":"2024","unstructured":"ICANN. Monthly Registry Reports, 2024. https:\/\/www.icann.org\/resources\/pages\/registry-reports."},{"key":"e_1_3_2_1_40_1","volume-title":"Uniform Domain-Name Dispute-Resolution Policy","author":"ICANN.","year":"2024","unstructured":"ICANN. Uniform Domain-Name Dispute-Resolution Policy, 2024. https:\/\/www.icann.org\/resources\/pages\/help\/dndr\/udrp-en."},{"key":"e_1_3_2_1_41_1","volume-title":"Uniform Rapid Suspension (URS)","author":"ICANN.","year":"2024","unstructured":"ICANN. Uniform Rapid Suspension (URS), 2024. https:\/\/www.icann.org\/urs-en."},{"key":"e_1_3_2_1_42_1","volume-title":"ICANN Domain Metrica: A Measurement Platform","author":"ICANN.","year":"2025","unstructured":"ICANN. ICANN Domain Metrica: A Measurement Platform, 2025. https:\/\/www.icann.org\/octo-ssr\/metrica-en."},{"key":"e_1_3_2_1_43_1","volume-title":"Criminal Abuse of Domain Names: Bulk Registration and Contact Information Access","author":"Interisle Consulting Group","year":"2019","unstructured":"Interisle Consulting Group. Criminal Abuse of Domain Names: Bulk Registration and Contact Information Access, 2019. https:\/\/interisle.net\/sub\/CriminalDomainAbuse.pdf."},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2017.15"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1145\/3196494.3196548"},{"key":"e_1_3_2_1_46_1","volume-title":"Know Your Business Customer obligations must apply to all intermediary service providers to offer a meaningful tool for tackling illegal activities and products online","author":"Digital Services Act KYBC.","year":"2022","unstructured":"KYBC. Digital Services Act: Know Your Business Customer obligations must apply to all intermediary service providers to offer a meaningful tool for tackling illegal activities and products online, 2022. https:\/\/www.kybc.eu\/wp-content\/uploads\/2022\/02\/KYBC-letter-18-Feb-2022.pdf."},{"key":"e_1_3_2_1_47_1","volume-title":"Journal of Advances in Computer Networks","author":"Le-Khac Nhien-An","year":"2015","unstructured":"Nhien-An Le-Khac and Tahar Kechadi. Security Threats of URL Shortening: A User's Perspective. Journal of Advances in Computer Networks, 2015."},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1109\/ECRIME.2018.8376215"},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-19274-7_20"},{"key":"e_1_3_2_1_50_1","first-page":"1","volume-title":"LEET","author":"Liu He Lonnie","year":"2011","unstructured":"He Lonnie Liu, Kirill Levchenko, M\u00e1rk F\u00e9legyh\u00e1zi, Christian Kreibich, Gregor Maier, and Geoffrey M Voelker. On the Effects of Registrar-Level Intervention. In LEET, pages 1-8, Boston, MA, 2011. USENIX Association."},{"key":"e_1_3_2_1_51_1","volume-title":"IMC. ACM","author":"Liu Suqi","year":"2015","unstructured":"Suqi Liu, Ian Foster, Stefan Savage, Geoffrey M. Voelker, and Lawrence K. Saul. Who is. com? Learning to Parse WHOIS Records. In IMC. ACM, 2015."},{"key":"e_1_3_2_1_52_1","volume-title":"Jinjin Liang, Zaifeng Zhang, Shuang Hao, and Min Yang","author":"Lu Chaoyi","year":"2021","unstructured":"Chaoyi Lu, Baojun Liu, Yiming Zhang, Zhou Li, Fenglu Zhang, Haixin Duan, Ying Liu, Joann Qiongna Chen, Jinjin Liang, Zaifeng Zhang, Shuang Hao, and Min Yang. From WHOIS to WHOWAS: A Large-Scale Measurement Study of Domain Registration Privacy under the GDPR. In NDSS, 2021."},{"key":"e_1_3_2_1_53_1","volume-title":"COMAR: Classification of Compromised versus Maliciously Registered Domains","author":"Maroofi Sourena","year":"2020","unstructured":"Sourena Maroofi, Maciej Korczy'nski, Cristian Hesselman, Beno\u00eet Ampeau, and Andrzej Duda. COMAR: Classification of Compromised versus Maliciously Registered Domains. In IEEE EuroS&P. IEEE Computer Society, 2020."},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/3658644.3690192"},{"key":"e_1_3_2_1_55_1","volume-title":"Buy a domain name - Register cheap","year":"2024","unstructured":"Namecheap. Buy a domain name - Register cheap, 2024. https:\/\/www.namecheap.com."},{"key":"e_1_3_2_1_56_1","unstructured":"NetBeacon Institute. June 2024 Monthly Analysis 2024. https:\/\/netbeacon.org\/wp-content\/uploads\/2024\/06\/MAP-Report-June-2024-.pdf."},{"key":"e_1_3_2_1_57_1","volume-title":"NetBeacon Measurement and Analytics Platform (MAP)","author":"Netbeacon Institute","year":"2025","unstructured":"Netbeacon Institute. NetBeacon Measurement and Analytics Platform (MAP), 2025. https:\/\/netbeacon.org\/map-analytics\/."},{"key":"e_1_3_2_1_58_1","unstructured":"Neustar. Registry Solutions 2019. https:\/\/web.archive.org\/web\/20191230213941\/https:\/\/www.home.neustar\/registry-solutions."},{"key":"e_1_3_2_1_59_1","first-page":"51","volume-title":"WWW","author":"Nikiforakis Nick","year":"2014","unstructured":"Nick Nikiforakis, Federico Maggi, Gianluca Stringhini, M Zubair Rafique, Wouter Joosen, Christopher Kruegel, Frank Piessens, Giovanni Vigna, and Stefano Zanero. Stranger Danger: Exploring the Ecosystem of Ad-based URL Shortening Services. In WWW, pages 51-62, New York, NY, USA, 2014. ACM."},{"key":"e_1_3_2_1_60_1","unstructured":"OpenPhish. Phishing Intelligence 2023. https:\/\/openphish.com."},{"key":"e_1_3_2_1_61_1","volume-title":"Join the Fight Against Phishing","year":"2023","unstructured":"PhishTank. Join the Fight Against Phishing, 2023. https:\/\/phishtank.org."},{"key":"e_1_3_2_1_62_1","volume-title":"Weaponizing Domain Names: how bulk registration aids global spam campaigns","author":"Piscitello Dave","year":"2020","unstructured":"Dave Piscitello. Weaponizing Domain Names: how bulk registration aids global spam campaigns, 2020. https:\/\/www.spamhaus.org\/news\/article\/795\/weaponizing-domain-names-how-bulk-registration-aids-global-spam-campaigns."},{"key":"e_1_3_2_1_63_1","volume-title":"Sourena Maroofi, Tom van Goethem, Davy Preuveneers, Andrzej Duda, Wouter Joosen, and Maciej Korczynski. A Practical Approach for Taking Down Avalanche Botnets Under Real-World Constraints","author":"Pochat Victor Le","year":"2020","unstructured":"Victor Le Pochat, Tim Van Hamme, Sourena Maroofi, Tom van Goethem, Davy Preuveneers, Andrzej Duda, Wouter Joosen, and Maciej Korczynski. A Practical Approach for Taking Down Avalanche Botnets Under Real-World Constraints. In NDSS. The Internet Society, 2020."},{"key":"e_1_3_2_1_64_1","volume-title":"Buy Account Credit with Crypto","year":"2023","unstructured":"Porkbun. Buy Account Credit with Crypto, 2023. https:\/\/porkbun.com\/products\/crypto."},{"key":"e_1_3_2_1_65_1","volume-title":"Free Mail Forwarding","year":"2024","unstructured":"Porkbun. Free Mail Forwarding, 2024. https:\/\/porkbun.com\/products\/email_forwarding."},{"key":"e_1_3_2_1_66_1","volume-title":"September","author":"Registry Public Interest","year":"2024","unstructured":"Public Interest Registry. .ORG - Power Your Inspiration. Connect Your World., September 2024. https:\/\/pir.org."},{"key":"e_1_3_2_1_67_1","volume-title":"Quality Performance Index (QPI)","author":"Registry Public Interest","year":"2025","unstructured":"Public Interest Registry. Quality Performance Index (QPI), 2025. https:\/\/pir.org\/our-impact\/qpi\/."},{"key":"e_1_3_2_1_68_1","volume-title":"Terms and procedures","author":"Punktum","year":"2024","unstructured":"Punktum dk. Terms and procedures, 2024. https:\/\/punktum.dk\/en\/articles\/terms-and-procedures."},{"key":"e_1_3_2_1_69_1","volume-title":"IMC","author":"Scheitle Quirin","year":"2018","unstructured":"Quirin Scheitle, Oliver Gasser, Theodor Nolte, Johanna Amann, Lexi Brent, Georg Carle, Ralph Holz, Thomas C. Schmidt, and Matthias W\u00e4hlisch. The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem. In IMC, 2018."},{"key":"e_1_3_2_1_70_1","unstructured":"SIDN - The Foundation for Internet Domain Registration in the Netherlands 2024. https:\/\/sidn.nl\/en."},{"key":"e_1_3_2_1_71_1","volume-title":"DNSSEC adoption heavily dependent on incentives and active promotion","author":"Labs SIDN","year":"2020","unstructured":"SIDN Labs. DNSSEC adoption heavily dependent on incentives and active promotion, 2020. https:\/\/www.sidn.nl\/en\/news-and-blogs\/dnssec-adoption-heavily-dependent-on-incentives-and-active-promotion."},{"key":"e_1_3_2_1_72_1","volume-title":"Assessing the Risk of New. nl Registrations Using RegCheck","author":"Labs SIDN","year":"2023","unstructured":"SIDN Labs. Assessing the Risk of New. nl Registrations Using RegCheck, 2023. https:\/\/www.sidnlabs.nl\/en\/news-and-blogs\/assessing-the-risk-of-new-nl-registrations-using-regcheck."},{"key":"e_1_3_2_1_73_1","first-page":"3721","volume-title":"USENIX Security","author":"Silva Ravindu De","year":"2021","unstructured":"Ravindu De Silva, Mohamed Nabeel, Charith Elvitigala, Issa Khalil, Ting Yu, and Chamath Keppitiyagama. Compromised or Attacker-Owned: A Large Scale Classification and Study of Hosting Domains of Malicious URLs. In USENIX Security, pages 3721-3738. USENIX Association, August 2021."},{"key":"e_1_3_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2016.76"},{"key":"e_1_3_2_1_75_1","doi-asserted-by":"publisher","DOI":"10.1145\/3359789.3359836"},{"key":"e_1_3_2_1_76_1","unstructured":"SURBL BV. SURBL Lists. http:\/\/www.surbl.org\/lists."},{"key":"e_1_3_2_1_77_1","first-page":"553","volume-title":"CCS","author":"Tajalizadehkhoob Samaneh","year":"2017","unstructured":"Samaneh Tajalizadehkhoob, Tom van Goethem, Maciej Korczy'nski, Arman Noroozian, Rainer B\u00f6hme, Tyler Moore, Wouter Joosen, and Michel van Eeten. Herding Vulnerable Cats: A Statistical Approach to Disentangle Joint Responsibility for Web Security in Shared Hosting. In CCS, pages 553-567. ACM, 2017."},{"key":"e_1_3_2_1_78_1","unstructured":"The Spamhaus Project. Domain Blocklist (DBL). https:\/\/www.spamhaus.org\/dbl."},{"key":"e_1_3_2_1_79_1","volume-title":"Compare Prices of All Top-Level Domains","year":"2022","unstructured":"TLD-List. Compare Prices of All Top-Level Domains, 2022. https:\/\/tld-list.com."},{"key":"e_1_3_2_1_80_1","volume-title":"September","year":"2024","unstructured":"Tucows. Making the Internet better, September 2024. https:\/\/www.tucows.com."},{"key":"e_1_3_2_1_81_1","volume-title":"Internet Crime Complaint Center. Internet Crimer Report. https:\/\/www.ic3.gov\/Media\/PDF\/AnnualReport\/2023_IC3Report.pdf","author":"US","year":"2023","unstructured":"US FBI, Internet Crime Complaint Center. Internet Crimer Report. https:\/\/www.ic3.gov\/Media\/PDF\/AnnualReport\/2023_IC3Report.pdf, 2023."},{"key":"e_1_3_2_1_82_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66332-6_21"}],"event":{"name":"CCS '25: ACM SIGSAC Conference on Computer and Communications Security","location":"Taipei Taiwan","acronym":"CCS '25","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3719027.3744869","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,22]],"date-time":"2025-12-22T22:17:30Z","timestamp":1766441850000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3719027.3744869"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,11,19]]},"references-count":82,"alternative-id":["10.1145\/3719027.3744869","10.1145\/3719027"],"URL":"https:\/\/doi.org\/10.1145\/3719027.3744869","relation":{},"subject":[],"published":{"date-parts":[[2025,11,19]]},"assertion":[{"value":"2025-11-22","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}