WOBURN, MA – May 13, 2015 – / — According to Kaspersky Lab’s Q1 2015 analysis of spam and phishing, the new generic top-level domain (gTLD) registration program, launched in January 2014 and intended for use by relevant communities and organizations, has proved irresistible to spammers. For cybercriminals, the new domains represent an excellent tool for promoting unwanted or illegitimate advertising campaigns.

Additionally, spam traffic in Q1 of 2015 included a large number of mass mailings with Microsoft Word or Excel attachments containing macro viruses. Fraudsters tried to lure users into opening the malicious files by disguising them as various documents, including financial. The fake messages often imitated notifications from well-known organizations and services.

Spam and phishing statistics

  • The proportion of spam in email traffic was 59.2 percent, which is 6 percent lower than in the previous quarter.
  • The USA retained its position as the biggest source of spam, sending 14.5 percent of unwanted mail.
  • Kaspersky Lab products recorded 50,077,057 instances that triggered the “Antiphishing” system. This was 1 million more than in the previous quarter.
  • Phishing against customers of financial organizations accounted for 37.06 percent of all registered incidents.
  • Insurance was one of the most popular themes for spam using the new domains both in terms of the number of messages and the number of changing domains seen in mass mailings.

New domain scams
The gTLD registration program gives organizations the opportunity to choose a domain zone that is consistent with their activities and the theme of their sites. For example, job websites can now use a .work domain and scientific websites could choose a .science domain. The business opportunities provided by the new gTLD program were enthusiastically endorsed by the Internet community and the active registration of new domain names is ongoing.

Spammers and cybercriminals have also been quick to react to the trend. As a result of their activities, new domain zones almost immediately became an arena for large-scale distribution of advertising spam, phishing and malicious emails. According to Kaspersky Lab’s email traffic observations, there was a considerable increase in the number of new domains that sent out spam content in Q1 of 2015.

In general there wasn’t much connection between the theme of the spam and the domain name, but in some cases there was a clear logical connection between them. For example, emails sent from the .work domains contained offers to carry out various types of work including household maintenance, construction or equipment installation. Additionally, many of the messages from the .science domains were advertising schools that offer distance learning and colleges to train nurses, criminal lawyers and other professionals.

“When looking at Q1 in general and the type of spam on the new domains, insurance was one of the hottest topics in terms of the number of messages and the number of changing domains in mass mailings. This covers all types of insurance – life, health, property, cars, animals, and funeral insurance,” said Tatyana Shcherbakova, Senior Spam Analyst at Kaspersky Lab.

To learn more about spam and phishing operations in Q1 2015, please read the blog post available at

About Kaspersky Lab
Kaspersky Lab is the world’s largest privately held vendor of endpoint protection solutions. The company is ranked among the world’s top four vendors of security solutions for endpoint users*. Throughout its more than 17-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 400 million users worldwide. Learn more at

For the latest in-depth information on security threat issues and trends, please visit:
Securelist | Information about Viruses, Hackers and Spam
Follow @Securelist on Twitter

Threatpost | The First Stop for Security News
Follow @Threatpost on Twitter

* The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2013. The rating was published in the IDC report “Worldwide Endpoint Security 2014–2018 Forecast and 2013 Vendor Shares (IDC #250210, August 2014). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2013.

Media Contact
Sarah (Bergeron) Kitsos

Source: Kaspersky


General Tags: SaaS, data security, software as a service, online backup services, cloud computing, online backup reviews, backing up online, online backup companies, online backup, online file backup, online backup providers directory, online file storage, CEO interviews, compare online backups, online data backup, online backup news, top rated online backups, data storage

Like us on Facebook

Do you like this post? Subscribe to our RSS feed ===========================

Sponsored Links:

Data Deposit Box


Bacula Systems



Related posts:

  1. Kaspersky Lab Spam and Phishing in Q2 2015 Report: Exploiting World Events and Targeting the Vulnerable with ‘$2 million’ Offers
  2. Kaspersky Lab Finds For the Fourth Year in a Row that Login Information is Most Targeted by Malicious Email Spam
  3. Over a Quarter of Phishing Attacks in 2014 Targeted Users’ Financial Data
  4. Kaspersky Lab Study: About One Third of All Phishing Attacks Aimed at Online Financial Institutions
  5. Kaspersky Lab Identifies Increase in Apple Phishing Scams
  6. Kaspersky Lab Reports Significant Increase in Malicious Spam Emails in Q1 2016
  7. Kaspersky Lab Finds 1 in 5 Phishing Attacks Target Banks and Financial Institutions
  8. Kaspersky Lab Reports: Phishers and Scammers Target the Upcoming FIFA World Cup 2014
  9. Iron Mountain to Protect Hundreds of New Top-Level Domains such as .guru, .loan and .dance with Data Escrow Services
  10. Phishing in the C-Suite: 96% of Executives Vulnerable to Attacks

Tags: ,