04ctd
04-10-2013, 10:04 AM
The sites sent in phishing e-mails are often to a kited domain where the fraud is implemented
my work is TRYING to make me smarter by sending me to school, it's not working, but at least it is interesting....
Domain kiting
When someone registers a domain name, there is a five-day grace period that is designed to be used to test the advertising revenue generated by the site. This is referred to as domain tasting. If the site proves to be unprofitable, the new domain can be returned and then you arent charged for the site.
Some people have the domain deleted during that grace period and then register the name again, thus resetting the grace period and postponing the payment for the domain. This is referred to as domain kiting. The registrar of the domain often deposits a large sum of cash with the registry and purchases multiple domains.
Because the registrar of the domain cancels the domain request during the grace period, they are given a refund of their deposit for the domain name.
Kited domains are often used as part of a phishing scheme. The sites sent in phishing e-mails are often to a kited domain where the fraud is implemented.
The Web sites used in domain kiting schemes typically just have search engine links in them. The registered domain makes money when the links are clicked. They often register misspellings of other sites so that if a user tries to visit a certain site and they mistype the URL, then they land in the domain kiters site. For example, someone might register googel.com in hopes of finding users heading for google.com
Domain kiting is not an illegal practice, but many feel it should be. It takes names that would otherwise be available to legitimate customers and ties them up without paying for them.
Kited domain sites are not usually very secure. They are often used by attackers to get into other sites. They can then exploit this loophole to perform attacks. An increase in the amount of fraudulent activities has increased over the years as this practice has become more popular
my work is TRYING to make me smarter by sending me to school, it's not working, but at least it is interesting....
Domain kiting
When someone registers a domain name, there is a five-day grace period that is designed to be used to test the advertising revenue generated by the site. This is referred to as domain tasting. If the site proves to be unprofitable, the new domain can be returned and then you arent charged for the site.
Some people have the domain deleted during that grace period and then register the name again, thus resetting the grace period and postponing the payment for the domain. This is referred to as domain kiting. The registrar of the domain often deposits a large sum of cash with the registry and purchases multiple domains.
Because the registrar of the domain cancels the domain request during the grace period, they are given a refund of their deposit for the domain name.
Kited domains are often used as part of a phishing scheme. The sites sent in phishing e-mails are often to a kited domain where the fraud is implemented.
The Web sites used in domain kiting schemes typically just have search engine links in them. The registered domain makes money when the links are clicked. They often register misspellings of other sites so that if a user tries to visit a certain site and they mistype the URL, then they land in the domain kiters site. For example, someone might register googel.com in hopes of finding users heading for google.com
Domain kiting is not an illegal practice, but many feel it should be. It takes names that would otherwise be available to legitimate customers and ties them up without paying for them.
Kited domain sites are not usually very secure. They are often used by attackers to get into other sites. They can then exploit this loophole to perform attacks. An increase in the amount of fraudulent activities has increased over the years as this practice has become more popular