qb20nh
commented
3 years ago Wow. Both Google Safe Browsing and Microsoft Defender SmartScreen are not blocking this domain.
Open ericlaw1979 opened 4 years ago
qb20nh
commented
3 years ago Wow. Both Google Safe Browsing and Microsoft Defender SmartScreen are not blocking this domain.
ericlaw1979
commented
3 years ago Blocking the entire domain tree would not be appropriate, because it's effectively a shared space between legitimate and illegitimate subdomains.
The request in this issue is to give a "suspiciousness point" to subdomains of such shared spaces akin to what's done for certain TLDs that are hotbed of bad actors.
ServeHTTP.com is a huge source of phishing content, as it's a eTLD+1 that farms out all subdomains to arbitrary parties. It seems likely that there are other such hotbeds of suspicious activity, and it seems worthwhile to bake those in.