Erase any text messages on your device containing these specific letters.
The increased sophistication of cyber threats should not lead to lax vigilance. A simple and clear indicator to be wary of is the presence of a .TOP domain in a text message link. These links are often accompanied by phishing attempts intended to lure users into sharing sensitive information or clicking on malicious links.
Malicious text messages frequently utilize a 'bait and switch' tactic, employing a convincing pretext such as unpaid road tolls, undelivered packages, or account issues, followed by a link promising resolution. The text body is typically crafted to appear as if it originates from the impersonated organization.
The surge in abuse associated with the .TOP domain has been significant, and it surpassed both .com and .cn domains registered in China by 2017. Friends of the Internet (Forbes) and Interisle report that four of the top 10 domain extensions had over 10% of their domains used for cybercrime activities by 2021, with .TOP having the highest proportion – 30%. This statistic only accounts for reported instances of abuse.
Low-cost registrations and minimal oversight contribute to .TOP's popularity among phishers. According to the Anti-phishing Working Group (APWG), attackers register a substantial number of new domains daily, adapted to match their illicit activities with relevant keywords and brand names. These domains typically remain active for less than a day, with some lasting as short as 10 minutes, making it easier for attackers to broadcast their scams on a mass scale.
The .TOP domain registry has been issued formal breach notices by the Internet Corporation for Assigned Names and Numbers (ICANN), highlighting the registry's failure to investigate and address abuse incidents effectively. Despite this, the incidence of abusive activities using .TOP domains has continued to escalate, increasing by over 300% between 2020 and 2021.
In the interest of protecting oneself, it is crucial to avoid clicking on links from unknown or suspicious sources, particularly those with .TOP domain extensions. Instead, directly contact the organization via official channels if you receive a message about payments or account issues.
When faced with an unsolicited or unexpected text message bearing a .TOP domain link, verify the message separately or report it to the relevant authorities before taking any action. Exercising caution and vigilance will help ensure that you do not become a victim of cybercriminals operating under the .TOP domain.
FBI warnings advise against clicking on links from unknown sources, particularly those with a .TOP domain extension. Cybersecurity professionals warn of the increased use of .TOP domains in smishing and phishing attacks, originating from both China and global cybercriminals.
