域名盗窃

域名盗窃是指未经原注册人允许，或滥用域名托管和注册商软件系统的特权，改变域名注册的行为^[1]。

这对原始域名持有者来说可能是毁灭性的打擊，因为他们原本要从该域托管的网站中获得商业收入或通过该域的电子邮件帐户开展业务，這樣的行為發生後就意味著他們在財政上受到損失。^[2]盗窃成功后，盗窃者可以使用该域名来進行其他非法活动，例如网络钓鱼，网站悄悄记录用戶的登录密码以及發送垃圾邮件和散播恶意软件^[3]。

参考文献[编辑]

^ Preventing Risks From Subdomain Takeover - Cloud Exploits. The Hack Report. 2021-02-10 [2021-04-14]. （原始内容存档于2021-12-27）（美国英语）.
^ Simon, Ruth. Cybercriminals Are Misappropriating Businesses' Web Addresses As a Result, Customers Can't Find the Real Companies on the Web. The Wall Street Journal. The Wall Street Journal. [12 September 2016]. （原始内容存档于2022-04-08）.
^ Weslow, David. Dealing with cybersquatting: the wisdom of thinking ahead. TBO: Trademarks & Brands Online. [12 September 2016]. （原始内容存档于2022-03-31）.

[1] Preventing Risks From Subdomain Takeover - Cloud Exploits. The Hack Report. 2021-02-10 [2021-04-14]. （原始内容存档于2021-12-27）（美国英语）.

[2] Simon, Ruth. Cybercriminals Are Misappropriating Businesses' Web Addresses As a Result, Customers Can't Find the Real Companies on the Web. The Wall Street Journal. The Wall Street Journal. [12 September 2016]. （原始内容存档于2022-04-08）.

[3] Weslow, David. Dealing with cybersquatting: the wisdom of thinking ahead. TBO: Trademarks & Brands Online. [12 September 2016]. （原始内容存档于2022-03-31）.

[1]

[2]

[3]