Concerns have been expressed by security experts and IT managers over Google’s new ZIP domains and MOV Internet domain, warning that threat actors may exploit them to spread malware and conduct phishing attacks.
Eight new top-level domains (TLDs) that may be purchased for hosting websites or email addresses were released by Google earlier this month.
The new top-level domains (TLDs) include the following :.dad,.esq,.prof,.phd,.nexus, .foo, and, most importantly for our article, zip and.mov.
Although the ZIP and MOV TLDs have been accessible since 2014, it wasn’t until this month that they were made broadly accessible, making it possible for anybody to buy a name for a website like bleepingcomputer.zip.
These domains might be seen as hazardous, though, because certain websites or programs will now automatically transform the TLDs of some files that are often shared in forum posts, emails, and online chats into URLs.