Realtime Register has invested heavily in a system to monitor abusive domains, allowing us to quickly detect abuse, report on it, and recommend steps you can take. Together we make the internet safer. But above all, we prevent reputation damage for you and your customers, which could otherwise grow into major issues. Our monitoring tools continuously analyze domain activity to identify potential threats as early as possible. This proactive approach helps minimize risks and allows for faster response when abuse is detected. Use of the Realtime Register Abuse Monitoring & Reporting is FREE OF CHARGE for all domains registered or managed on our platform.
Domain Abuse is a big problem in our industry and occurs in many different ways: botnets, phishing, child pornography, malware, illegal pharmacies, CEO fraud, etc.
The responsibility for detecting and combating domain abuse is increasingly being shifted towards the registries, registrars, and the hosting provider. Yet completely preventing abuse is difficult, if not impossible. There will always be registrants who register a domain with (eventually) bad intentions. The trick is to recognize these registrants, monitor their actions, and intervene as quickly as possible when they develop illegal activities. If taken offline quick enough, they will stop or seek refuge elsewhere.
Abuse monitoring & reporting for a safer internet.
Realtime Register is an active member of the internet community in the fight against abuse. We are among the initial signatories of the DNS Abuse Framework and follow the framework in our abuse policy regarding domain abuse. The framework applies to identify the following types of domain abuse.
Besides the DNS Abuse Framework, we are also proudly member of:
URL/Hostname/content abuse is foremost the responsibility of the hosters (our customers) who are better positioned to battle these types of abuse. We assist our customers with resources, notifications, monitoring and consultancy. We also offer services where we act as first responders to abuse notifications on behalf of our customers, always within guidelines agreed upon with the customer.
Most of these procedures are documented within the DNS Abuse Framework.
Realtime Register staff follows an incident reporting-based approach. If we receive a complaint, we determine the threat type and threat level. In our assessment, we investigate if more domain names are involved. After our staff has obtained all the available information, we apply the OODA loop. The OODA loop is a cyber intelligence strategy about the decision-making process. Broken down, the OODA loop stands for four distinct yet interrelated, smaller loops: observe, orient, decide, and act. Usually the result of this cyber intelligence approach is that we inform the customer to take down the malicious URL, or we inform the customer with the evidence why a domain name was taken down. These actions and processes are aligned with the relevant sections in our terms of service.
Great! Are you interested in Abuse Monitoring? You can create your GO!ORANGE account to start straight away, without any hassle. Or just get in touch with us for more information.
Abuse Monitoring & Reporting is a sophisticated system that continuously scans your domain portfolio for illegal or harmful activities such as phishing, malware, botnets, and spam. Realtime Register has invested heavily in this infrastructure to help you detect and mitigate threats early. Best of all, this service is provided free of charge for all domains registered and managed on our platform.
Our system aggregates data from over 75 professional intelligence feeds and more than 120 Open Threat Exchange feeds. We recently integrated predictive intelligence from the Global Cyber Alliance, allowing us to identify potentially risky domains based on behavioral patterns even before an actual abuse case is confirmed. This proactive approach helps reduce financial risks like credit card fraud and chargebacks.
You can access all findings through our Abuse Dashboard within the Insights platform. The dashboard provides a "zoom-in" functionality, allowing you to see which specific feeds reported a domain and the nature of the threat. Additionally, you can receive automated email notifications or pull near real-time intelligence directly into your own ticketing system via our API.
The service ensures you are fully compliant with ICANN RRA Spec. 11.3B, which requires registrars to monitor and take action against DNS abuse. By intervening quickly, you prevent your brand from being associated with cybercrime and avoid being blacklisted by major providers. Furthermore, demonstrating a proactive stance on abuse often helps resellers qualify for better promotions and higher Marketing Development Funds (MDFs) from registries.
Our system provides you with the evidence and recommendations needed to take action. Typically, this involves notifying your customer to remove malicious content or taking the domain offline if the activity is confirmed illegal. We act as a consultant and first responder, helping you navigate complex cases while following the DNS Abuse Framework to ensure the internet remains safe for everyone.