NetBlocks
Just got this from ICANN ’s CZDS: Zone file access for .top revoked – reason: “TLD has been made inactive.”
#domain #cybersecurity #security #dns #dnssec #icann
| Website | https://kyousefi.com |
| Website Arabic | https://karen.ae |
| [email protected] |
Karen Yousefi 
- 9 Followers
- 34 Following
- 34 Posts
Cyber Security Specialist
CEO @karenit
Co-founder @urlabuse
🚨 A Phishing Domain Targeting UAE ICP Smart Services
A few days ago, while trying to access the #UAE ICP Smart Services portal, I accidentally typed the URL with a space — which redirected me to a Google search instead of the official site.
While correcting the address, I noticed something suspicious: the third search result was a phishing domain impersonating the official Federal Authority for Identity, Citizenship, Customs & Port Security (ICP) website.
The domain name looked almost identical to the legitimate one, even using what appeared to be a subdomain of the official ICP service.
After a closer look, I found that the fake site presented itself as a “File Validity Check” and was collecting personal information from visitors.
Out of curiosity, I entered fake data and noticed that the system perfectly mimicked ICP’s backend mechanisms, including the country code structure used by the real platform. All submitted data was being sent via an #API request to an unknown endpoint.
Interestingly, the phishing domain had been active and indexed by Google since June 6, ranking third in search results, with no visible mitigation action.
During further investigation, I also identified two additional related domains, which I’m currently analyzing.
🔎 Reminder: Just because a website appears in #Google search results doesn’t mean it’s legitimate.
The safest approach is to bookmark or memorize official URLs for important government and financial services.
Stay vigilant — #phishing campaigns are getting more sophisticated every day.
#domain #dns #abuse #cybersecurity #scam #AE #emirates #dnsabuse
URLAbuse 🚀 URLAbuse.com – New Version Launched!
We’re excited to announce the launch of the new and improved version of URLAbuse.com!
This major update introduces powerful new detection capabilities, a modernized user experience, and enhanced performance across the platform.
To improve reliability and prevent abuse from automated or spam systems, we’ve integrated a secure registration process directly into the platform.
We encourage all users to sign up and create an account to take full advantage of the new features and stay ahead of emerging threats.
We’ve also expanded our detection coverage with five new threat categories: phishing, malware, hacked sites, scams, and illegal gambling.
The mission remains the same — with a brand new look.
Join us today and experience the next generation of abuse detection and threat intelligence at URLAbuse.com .
If you’re using data from URLAbuse (urlabuse.com), don’t miss our upcoming topDNS Best Practice Series webinar! 🚀
📅 Date & Time: 08 October 2025
🌐 Topic: How is DNS Abuse actually measured?
We’ll cover:
✅ The latest updates to the URLAbuse system
✅ How DNS abuse is measured in practice
✅ A first look at our brand-new platform 🎉
Speakers:
Maciej Korczynski (KOR Labs)
Sourena Maroofi (URLAbuse)
Rowena Schoo (NetBeacon Institute)
🔹 Moderated by Lars Steffen (eco – Association of the Internet Industry)
🔗 More details & registration: https://topdns.eco.de/events-archive/topdns-best-practice-series-how-is-dns-abuse-actually-measured/
If you work in cybersecurity, DNS operations, or anti-abuse, this is a great opportunity to learn, ask questions, and get a first look at what’s next.
#DNS #DNSAbuse #CyberSecurity #Infosec #Webinar #URLAbuse #topDNS
⚠ Update: Metrics show #Iran has now been offline for over 12 hours as authorities impose a nation-scale internet shutdown, citing Israel's alleged "misuse" of the network for military purposes; the measure continues to hinder residents' access to information at a critical time
We’re detecting and monitoring #Chinese #phishing campaigns targeting U.S. #toll systems. In recent days, their activity has noticeably increased, especially within U.S. court systems such as:
• Administrative Office of #Pennsylvania Courts
• New Jersey Courts
We continue to closely track these campaigns and share relevant data with our partners.
#sms #scam #cybersecurity #cybercrime #usa #us #nj #pa #NewJersey #New_Jersey #crime #Court #justice
#Chinese #phishing #campaign activity has expanded across #GCC countries.
At @urlabuse and @karenit, we are detecting and monitoring Chinese phishing campaigns that target U.S. #toll systems. In recent days, their activity has noticeably increased in GCC countries.
🚨a serious warning for residents.
In the #UAE, observed targets include Dubai Police , #Salik , #RAKBANK , Abu Dhabi Mobility , Emirates NBD , and Dubai Electricity & Water Authority - DEWA and etc.
In #Qatar, examples include Hukoomi Qatar (the Government of Qatar’s e-services portal) and Qatar Post .
Since these campaigns are offered as Phishing-as-a-Service (PhaaS), we are not facing a single threat actor — instead, multiple individuals or groups are exploiting this service for their own operations.
We’ve shared the data with our strategic partners and are closely monitoring the campaigns.
#Dubai #AbuDhabi #scam #crime #cybersecurity #post #us #usa #sms
