In the course of protecting our client portfolios, we come across hostile domain names that pose a risk to the community at large.
Domainsure makes these feeds available to other security vendors, DNS resolvers, and service providers as a way to collaborate and share data about harmful and hostile domain names.
The following threat feeds are available:
(as of Feb 1, 2024)
Domainsure Crypto Defender RPZ
Live phishes, clones, malware sites targeting known crypto and Bitcoin exchanges, wallets, DeFi platforms, token projects, DAOs and blockchains.
Domainsure Verified Phishing RPZ
Live phishing attacks on external entities detected through our network of honeypots and sensors.
Domainsure Public Redirects List (DS PURLs RPZ)
Here we have collated over 1,200 known public URL redirect and shortner services. These are not malware and should not be summarily blocked.
But they are routinely abused, and we offer the ability to inject “pattern interrupts” into the redirect chain to warn customer service agents, employees and end-users that the link they are following, while purporting to be a conventionally used service they may be familiar with, may in reality be a fake link obfuscated by a public redirect service.