Feed

List Update

Posted on June 2nd, 2016 in New Domains,Removed Domains by Adam Shinn

Last week (5/22-5/28) we added 1852 domains to the list. 336 domains were removed. 223 of these domains were Locky ransomware downloads or C&C servers contacted by Locky ransomware. 155 domains were a part of a Kraken botnet. Please update to the latest list and thank you for using Malware Domains.

List Updated

Posted on May 18th, 2016 in New Domains,Removed Domains by Adam Shinn

Added 1402 domains to the list and removed 1129 this past week. Many of these domains were phishing scams and fake virus pages. Thanks to the community who has contributed to this list over the past week.

List Update

Posted on May 10th, 2016 in New Domains,Removed Domains by Adam Shinn

This past week we added 1561 domains to the list and removed 6.
Once again, a lot of these domains are hosting Locky ransowmare. Stay safe out there.

Malware Domains

List Update

Posted on May 4th, 2016 in New Domains,Removed Domains by Adam Shinn

Last week we added 457 new domains to the list and removed 9.
We saw another wave of Locky ransomware and Dridex over this past week. Stay safe.

Thank you for using Malware Domains.

List Update

Posted on April 25th, 2016 in dridex,New Domains,Phishing,ransomware,Removed Domains by Adam Shinn

The Malware Domains List has been posted for today. Last week we added 1,604 new domains to the list and removed 171.
Most were phishing domains, but Dridex and Ransomware were top contenders.

Thank you for using Malware Domains.

Updated List

Posted on March 4th, 2016 in New Domains,Removed Domains by Adam Shinn

We have been hard at work updating all of the domains currently on our list. We have removed many domains that are no longer malicious. As of today, every domain on our list has been verified as malicious since 2016. We are working towards keeping this list much more current, and this was a huge step towards that.

Thank you for your support and for using Malware Domains.

Incorrectly Blocked Domain

Posted on January 15th, 2016 in Removed Domains by Adam Shinn

We accidentally blocked the site ‘s.ytimg.com’ as part of an AnglerEK indicator. This was in error as this site is used by youtube.com to display content properly.
As of 15:10 UTC 2016/01/15, this domain has been removed from our blacklist. Sorry for any inconvenience and thank you for using Malware Domains.

New Domains and TeslaCrypt

Posted on December 18th, 2015 in New Domains,Removed Domains,TeslaCrypt by Adam Shinn

We’ve added 1560 domains to our blacklist since 12/5. We also removed 745 domains due to a source shutting down their service. We have verified many of these domains to be clean, yet some of them have still come up malicious. In other news, TeslaCrypt has been on the rise recently and we have been able to add multiple domains either hosting or pointing to TelsaCrypt. Keeping fighting the good fight.

List Updated

Posted on December 4th, 2015 in New Domains,Removed Domains by Adam Shinn

We’ve added 561 domains and removed 19 domains from our list since 11/26. A lot of the domains that we added led to fake virus pages and a few of them downloaded variants of Dridex.

New Domains and a School of Phishing Pages

Posted on November 18th, 2015 in New Domains,Removed Domains by Adam Shinn

We’ve added 851 domains since 11/10. We’ve also removed 51 domains from our blacklist. We found a compromised site with an index full of phishing pages along with the resources to create other phishing pages as well. Blocking this site not only stops the active phishing pages, but it also give us insight into how these pages are crafted.

Stay safe out there and thank you for using Malware Domains.