Companies can significantly improve their cybersecurity by blocking access to newly registered domains (NRDs) because 70% of these are “malicious,” “suspicious” or “not safe for work,” a new report by Palo Alto Networks suggests.
These findings confirm earlier reports indicating that threat actors frequently use NRDs for malicious purposes including “C2 [command and control], malware distribution, phishing, typosquatting, PUP/Adware, and spam.” Palo Alto Networks therefore recommends firms not to allow access to domains in the first 32 days after their registration or an ownership change.