30 April 2021
Updated Phishing Activity Reports Posted
Phishing activity updates for the period August 1, 2020 through October 31, 2020 are now available at
the Cybercrime Information Center.
The updates include measurements and rankings of Top-level Domains, Domain Registrars and Hosting Networks (ASNs) for the August 1, 2020 through October 31,2020 period.
Comparisons of measurements against the prior period, May 1, 2020 through July 31, 2020 are also available.
13 March 2021
Academic Research Corroborates Interisle Study Findings
A large-scale systematic measurement study
to quantify the changes made by WHOIS providers in response to the GDPR was presented at The Network and Distributed System Security Symposium (NDSS) on 22 February.
Using a collection of 1.2 billion WHOIS records spanning two years and software they developed to automate compliance checking, the researchers found levels of WHOIS
redaction beyond what the GDPR would require that corroborate the findings of Interisle's recent
WHOIS Contact Data Availability and Registrant Classification Study.
1 March 2021
Interisle Launches the Cybercrime Information Center
Cybercrime—phishing, pharming, botnets, malware, and spam—threatens every Internet user. To fight cybercrime we need to know how criminals acquire
and use the Internet resources that enable their criminal activity. The Cybercrime Information Center
(CIC) will gather and publish the facts about cybercrime. By publishing its measurement data, the Center will identify the sources and mechanisms of
cybercrime, as defined in the Council of Europe's Budapest Convention
on Cybercrime. Researchers, governments, businesses, and others will be able to use CIC data to evaluate the policies and practices that attract and encourage
25 January 2021
WHOIS Contact Data 2021
Interisle Consulting Group has published a major new research report, the
WHOIS Contact Data Availability and Registrant Classification Study.
The report presents an in-depth analysis of how contact data for Internet domain names–which make all web sites, email, and apps work–has disappeared from public
access, impeding cybercrime investigation, consumer protection, Internet security, and online commerce.
23 January 2021
Andy Malis co-authors two RFCs on Deterministic Networking
Interisle partner Andy Malis participates in IETF's Deterministic Networking (DetNet) project, which focuses on deterministic data paths providing bounds on
latency, loss, jitter, and high reliability. DetNet is publishing a set of RFCs on this topic, with Andy as co-author on some. Recently published include
RFC 8938: Deterministic Networking (DetNet) Data Plane Framework
and RFC 8964: Deterministic Networking (DetNet) Data Plane: MPLS.
1 January 2021
Interisle welcomes new Partner Andy Malis
Andy Malis, a well-known and widely respected contributor to the development of telecommunications technology and the Internet for over 40 years,
joins Interisle as a Partner. He brings to Interisle extensive experience in networking protocol architecture and evolution, product architecture
and strategic planning, service provider network planning, and technology transfer, and a strong reputation for leadership in international standardization bodies
(including the IETF, Broadband Forum, ITU-T,and Open Networking Foundation), standards authorship, and chairing and speaking roles at conferences and other industry events.
Andy is the author or co-author of more than 40 IETF RFCs and Internet drafts, and currently co-chairs the IETF's Pseudowire And LDP-enabled Services (PALS) working group.
Learn more about Andy on our About Us page.
13 October 2020
Phishing Landscape 2020
Interisle Consulting Group has published a major new research report,
Phishing Landscape 2020: A Study of the Scope and Distribution of Phishing.
Interisle collected data about phishing attacks from four respected threat intelligence sources over a period of three months, learning about more than 100,000 newly discovered phishing sites.
This extensive data set formed the basis for an in-depth analysis of how and where criminals are getting the resources they use to scam Internet users, and points to better ways to fight phishing.
Disinformation and the 2020 Election
Dave Piscitello was again a guest on the Unsung Cyber Hero Adventure TV Network for an episode entitled
The 2020 Election & Disinformation: Is Our Democracy Under Attack!.
Appearing with Dave was fellow cyber investigator, John Bambenek, who is a visiting lecturer at University of Illinois. Also appearing was Llewelyn King,
the Co-creator and host of the PBS Show, The White House Chronicles. Host Gary Berman focused the discussion on a range of interrelated topics.
Ransomware Exposed on Unsung Cyber Hero Adventures TV Network
Interisle principal Dave Piscitello and fellow guest Christiaan Beek of McAfee share experiences dealing with ransomware and related cybercrime during this
Unsung Cyber Hero Adventures TV episode.
Dave and Christiaan explain what ransomware is, how it's delivered, which sectors are the MOST vulnerable to ransomware and why, and how individuals, small businesses and large organizations
should contend with it. They also share how cyber criminals are leveraging Covid-19 to deploy ransomware and answer the thorny question, “should a victim pay the ransom?”
Internet Infrastructure Coalition responds to Interisle's domain registration data report
On April 28 the Internet Infrastructure Coalition (i2Coalition) published
comments on the Interisle Report
“Domain Registration Data at a Crossroads.” The Coalition “objects to the flawed conclusions drawn by”
the report and charges that it “establishes a false framework as the basis from which it assesses registrars.” They conclude that “[t]he report reads more like
the promotion of specific agendas, including on policy development work in the context of the ICANN EPDP, rather than solutions.”
Interisle stands by its report and will entertain and review any data or equivalent analyses provided by the Coalition that would influence its findings or recommendations.
Interisle releases report on domain registration data
Internet users of all kinds rely on public domain name registration data services ("Whois") to obtain accurate and up-to-date operational and registration information
for vital and legitimate purposes. Over the last two years, access to domain name registration data has been drastically curtailed as a result of ICANN policies,
data privacy laws, and due to practices by registrars and registry operators.
Interisle studied domain registration data, measuring the effectiveness and impact of ICANN's registration data access
policies and procedures by examining the practices of 23 registrars, which collectively sponsor more than two-thirds of the registrations in the generic top-level
domains (gTLDs). It determined whether they comply with ICANN's policies and related contractual obligations, and also to the European Union's General Data Protection Regulation (EU GDPR).
You can read the Full Report, just the Executive Summary,
or the Press Release.
Interisle releases report on criminal domain abuse
Interisle studied the impact of bulk registration of domain names and how they aid cybercriminals with malware, ransomware, phishing, botnets and spam attacks.
In the report, we studied "bulk registration misuse" by criminal actors. Bulk registrations refers to the practice of rapidly acquiring domain names,
using these in an attack, and abandoning them as if they were throw-away ("burner") phones. These domains are a critical resource for cybercriminals.
You can read the full report: Criminal Abuse of Domain Names or
just the Executive Summary.