Blogspot.in Domain Expired, Now at Risk of Abuse
NJCCIC Advisory
Original Release Date: 7/10/2020
Summary
The blogspot.in domain expired in early June after its owner, Google, did not renew it. This broke roughly 4.4 million URLs in the Google search results, in addition to other blogspot.in links shared on various platforms, as the domain no longer responded to requests. The domain has since been purchased by shared hosting provider “domainming.com” and is now for sale on the Sedo domain marketplace for $5,999. Purchasing the domain provides control over millions of URLs and, in the hands bad actors, could be used for nefarious purposes, such as credential phishing or hosting malware on one of the websites and directing users to the website via social engineering scams.
Recommendations
The NJCCIC recommends website owners ensure they renew domains to prevent them from expiring. As these blogspot.in domains could be used in social engineering scams, users are advised to exercise caution and refrain from clicking links delivered in emails from unknown senders and those posted on social media platforms if its legitimacy cannot be verified. More information can be found in the Bleeping Computer article.
The NJCCIC is a component organization within the New Jersey Office of Homeland Security and Preparedness. We are the State's one-stop-shop for cyber threat analysis, incident reporting, and information sharing and are committed to making New Jersey more resilient to cyber threats by spreading awareness and promoting the adoption of best practices.
View our Privacy Policy here.
View our Site Index here.