SecurityWeek

Internet Infrastructure TLD .arpa Abused in Phishing Attacks

A new phishing campaign abuses the .arpa TLD to host malicious content and hides its location via Cloudflare’s infrastructure.
CSO Online

Hacker abusing .arpa domain to evade phishing detection, says Infoblox

A threat actor has found a new way to evade phishing detection defenses: Manipulate the .arpa top-level domain (TLD) and IPv6-to-IPv4 tunneling to host phishing content on domains that shouldn’t ...

Hackers abuse .arpa DNS and ipv6 to evade phishing defenses

Threat actors are abusing the special-use ".arpa" domain and IPv6 reverse DNS in phishing campaigns that more easily evade ...