Threats Tagged 'domain clustering'
View all threats tagged with 'domain clustering'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'domain clustering'
Click on any threat for detailed analysis and mitigation recommendations
Inside a network of 20,000+ fake shops 0 A massive network of over 20,000 fraudulent e-commerce domains has been uncovered, all sharing common infrastructure and design patterns. These fake shops, primarily using the .shop domain, are designed to steal payment details and personal data from unsuspecting consumers. The operation is highly industrialized, with domains resolving to just 36 IP addresses, indicating a franchise-style model where a core team manages servers and templates while individual operators launch storefronts. The shops use familiar e-commerce tactics and psychological pressure to lure victims. To protect yourself, use browser protection tools, scrutinize unfamiliar domains, be wary of deep discounts, and look for independent reviews before making purchases. MediumCampaign Join the discussion United States United Kingdom Canada+7#dropshipping scams#consumer protection#e-commerce fraud | AlienVault OTX General | 03/18/2026, 16:24:46 UTC Added: 03/18/2026, 16:27:29 UTC |
Using SSL Certificates and Graph Theory to Uncover Threat Actors 0 Researchers at Infoblox have developed an advanced technique leveraging graph theory and SSL certificates to uncover threat actor operational relationships. The approach analyzes Certificate Transparency logs, using the Subject Alternative Name field in certificates to identify domains under common control. By modeling domains as nodes and certificate relationships as edges, the system reveals comprehensive threat infrastructures. This method enables discovery of new malicious domains, consolidation of threat actor identities, and early detection of emerging threats. The system processes millions of certificates daily, providing actionable intelligence on threat actor operations across various types of cybercriminal activities. MediumCampaign Join the discussionUnited StatesUnited Kingdom Germany+8#graph theory#certificate transparency#infrastructure discovery | AlienVault OTX General | 03/04/2026, 19:42:41 UTC Added: 03/05/2026, 09:52:49 UTC |
Showing 1 to 2 of 2 results