Financial Crime World

VeriSign’s Secret Domain Deal: How the “.cc” Domain Became a Hotbed of Scams and Child Abuse

A Notorious Reputation

In a shocking revelation, it has emerged that VeriSign, a massive company responsible for running much of the internet’s back-end systems, acquired the domain name of the Cocos (Keeling) Islands, a remote Australian territory. The “.cc” domain was meant to expand global connectivity, but instead, it has become synonymous with scams and child abuse.

A History of Scams

By the end of the 2000s, the “.cc” domain had earned a notorious reputation for hosting phishing attacks, tricking users into giving up sensitive information. In 2010, Google took the rare step of blocking the “.co.cc” domain after it was found to be sold to scammers by a Korean company that had purchased the right from VeriSign.

Child Abuse Material

Websites hosting images of child sexual abuse began using the “.cc” domain, according to James Mortensen, a research fellow at the Australian National University’s National Security College. “It’s a very cheap domain that doesn’t require much information, not much oversight,” he said. “It’s a really easy place to do unscrupulous business.”

Regulatory Concerns

The UK’s Internet Watch Foundation listed “.cc” as the tenth most abused TLD in 2019 for child sexual abuse material, with it previously ranking in the top 5 in 2016.

Calls for Regulation

Experts are now calling on the Australian government to regulate or reclaim the “.cc” domain and hold it to the same high standards as Australia’s own “.au” domain. Dr Mortensen points out that France successfully requested that ICANN redelegate its Antarctic external territory’s “.tf” TLD to a non-profit organization in 2004.

VeriSign’s Response

In response to questions from the ABC, VeriSign communications executive James Barbour said the company does not “own” the domain and only acts as the registry operator with an endorsement from the Shire of Cocos (Keeling) Islands and a memorandum of understanding with the Australian government. However, experts argue that this arrangement is ineffective in preventing scams and child abuse.

Government Response

The Department of Communications has refused to take responsibility for the domain, directing concerns about breaches of Australian laws to the Australian Federal Police. The eSafety Commissioner also works with law enforcement agencies to remove illegal material hosted in Australia and overseas.

Reclaiming Digital Real Estate

Dr Mortensen believes it’s time for Australia to take control of its digital real estate. “I can’t see, based on current practice and policies, how the Australian government would be denied the right to take control of the .cc domain,” he said.

Conclusion

As the “.cc” domain continues to host scams and child abuse material, experts are urging the Australian government to step in and reclaim its digital territory. It’s time for Australia to take responsibility for its digital real estate and ensure that it is not used for illegal activities.