Eisspeedway

.zip (top-level domain)

.zip
Introduced
  • 2014
  • 2023 (public registration)
TLD typeGeneric top-level domain
StatusActive
RegistryAlphabet Inc.
Registered domains14,000 (2024)[1]

.zip is a top-level domain name operated by Google.[2] .zip is a generic top-level domain (gTLD) introduced under the Internet Corporation for Assigned Names and Numbers's new gTLD program. Approved as a part of the program, .zip became available to the general public on May 3, 2023.

The qualifier .zip is also associated with the widely recognized .zip file format, commonly used for file compression and archiving, and its approval as a gTLD received criticism for the security concerns that may arise as a consequence.

Security concerns

Google opened registration for the .zip and .mov top-level domains to the general public on May 3, 2023. Its release was immediately met with condemnation from cyber security experts as a result of its similarity with the file format of the same name.[3][4] Malwarebytes warned against the use of already recognizable filenames and their confusion with top-level domains, as "plenty of users already have a clear idea that .zip means something completely different."[5] Experts cautioned against their use, and noted that the use of .zip filetypes in cybercrime had had "an explosion" in recent years.[5] Cisco warned against the potential for leaks for personal identifying information.[6] Researchers also registered similar concern about Google's .mov domain.[3][4]

Surveys by security researchers immediately following public release of domain registration found numerous examples of links and domains registered under .zip being used in phishing attempts, and the ICSS recommended disabling access to .zip domains until "the dust settles and risks can be accessed."[7]

Usage

Following its release to the general public, .zip domain registrations were one of the most popular new domains registered in summer of 2023, during the domain's landrush and early access period.[8] Security researchers noted high levels of phishing domains and high levels of redirection campaigns. Shortly after its release, some security vendors blocked access to .zip domains, and new domains under these TLDs began to be scrutinized more carefully.[8]

One month after its public release in June 2023, there were 13,796 .zip domains registered;[9] which has risen to over 14,000 as of November 2024.[1] Security researchers found that malicious use of the domain was approximately 0.20%, slightly below the global average of 0.22%. This was still higher than the abuse rate of 0.06% seen in European ccTLDs.[9]

See also

  • Zip bomb – Malicious archive file designed to disrupt the program or system reading it

References

  1. ^ a b ".zip | Top-Level Domain Breakdown". nTLDStats. Retrieved 18 November 2024.
  2. ^ ".zip Registry Agreement". www.icann.org.
  3. ^ a b Alcantara, Jan Michael (12 June 2023). ".Zip and .Mov Top Level Domain Abuse: One Month After Being Made Public". Netskope.
  4. ^ a b Newman, Lily Hay (21 May 2023). "The Real Risks in Google's New .Zip and .Mov Domains". Wired.
  5. ^ a b Stockley, Mark (17 May 2023). "Zip domains, a bad idea nobody asked for". Malwarebytes.
  6. ^ "".Zip" top-level domains draw potential for information leaks". Cisco Talos Blog. 13 June 2023.
  7. ^ Brinkmann, Martin (15 May 2023). "Google's .zip Top Level domain is already used in phishing attacks - gHacks Tech News".
  8. ^ a b Ramesh, Reethika; Chen, Zhanhao; Li, Wanjin; Liu, Daiping (30 August 2024). "TLD Tracker: Exploring Newly Released Top-Level Domains".
  9. ^ a b Deacon, Alex (July 17, 2023). "The .zip TLD: Ripe for abuse, but so far so good". DNS Research Federation.