deltatux Jul 18, 2023
Researchers at #Fortinet are reporting on the trend where threat actors are leveraging the .zip #TLD that #Google recently opened up for the public to use.

While there were many examples of good Samaritans registering domains like assignment.zip or chatgpt5.zip, threat actors are registering other domain names with the TLD as part of their #phishing arsenal.

#infosec #cybersecurity #phishing #ziptld

https://www.fortinet.com/blog/industry-trends/threat-actors-add-zip-domains-to-phishing-arsenals
Threat Actors Add .zip Domains to Their Phishing Arsenals | Fortinet Blog

In the evolving cybersecurity landscape, understanding the phishing threat has become more critical than ever. Read into a new threat resulting from the addition of a new Top-Level Domain (TLD), '.…

Fortinet Blog
Chris YoungJun 20, 2023
Just copied a zip filename to the URL bar thinking it would search for it... stopped myself before hitting return, copied it back out and lo and behold it had decided it was now a URL. #ZipTLD
Echo 🦊May 29, 2023

For those who still do not know how the new #google .zip domains can be dangerous, @mrd0x made a wonderful summary about it with a demo you can try to see how a bad actor can use the .zip TLD to gain access.

Write-up: https://mrd0x.com/file-archiver-in-the-browser/
See it in action: https://mrd0x.zip/

#security #infosec #ziptld

File Archiver In The Browser | mr.d0x

Security Research | C:\Users\mr.d0x>

JRT May 29, 2023

It doesn't help that Windows is hiding known file extensions by default. :D

File Archiver In The Browser | mr.d0x
"This article explores a phishing technique that emulates a file archiver software in the browser while using a .zip domain."

https://mrd0x.com/file-archiver-in-the-browser/
#zip #ziptld

File Archiver In The Browser | mr.d0x

Security Research | C:\Users\mr.d0x>

Stephen May 27, 2023

Seeing how the .zip TLD is now a thing, how long before .pdf, .docx etc, as file extension domains are apparently fair game. Combine this with Win 11 (and likely 12) having an "AI assistant" that looks online before locally when searching for a file could mean a nonzero chance of just bricking your PC by even *searching* for a local file

#ZipTLD #microsoft #CyberSec

Joshua May 25, 2023

Do this.

#GoogleTLD #ZIPTLD #MOVTLD

Rafa GuillermoMay 22, 2023

Set up my own little page over on https://holidayphotos.zip

Even if it's just by the smallest of amounts, as a security professional I feel we all have to do our part to help make this clusterfuck of a place we call the internet that little bit safer. #zip #ziptld #infosec #informationsecurity #cybersecurity #google

Stephen May 20, 2023

So I got very bored and spent ~£10 and an hour of my time for a very, very silly joke

https://gayagenda.zip/

#zip #ZipTLD #TheGayAgenda #silly #lgbt

TheGayAgenda.zip

Tane Piper ⁂May 18, 2023
LOL so much OSX malware incoming I guess (OSX default compression creates an Archive.zip file) #zipTLD #infosec
Klaus Alexander SeistrupMay 18, 2023
Can you quickly tell which of the URLs below is legitimate and which one is a malicious phish that drops evil.exe?

htt‍ps://github.com∕kubernetes∕kubernetes∕archive∕refs∕tags∕@v1271.zip

htt‍ps://github.com/kubernetes/kubernetes/archive/refs/tags/v1.27.1.zip

Read it all:

🔗 https://scribe.rip/@bobbyrsec/the-dangers-of-googles-zip-tld-5e1e675e59a5

/cc [ #dotZip | #zipTLD | #phishing | #security ]
The Dangers of Google’s .zip TLD