The parking lot of digital danger. [Research Saturday]

CyberWire Daily

N2K Networks, Inc.

News, Daily News, Tech News, Technology

4.8 • 1.1K Ratings

🗓️ 28 February 2026

⏱️ 20 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

This week we are joined by Dr. Renée Burton, Vice President of Infoblox Threat Intel, discussing "Parked Domains and Direct Search: An Underreported Security Risk." Parked domains are no longer harmless ad pages — new research finds that in today’s “direct search” or zero-click parking ecosystem, more than 90% of visits to certain parked lookalike domains lead to scams, malware, or deceptive content, often hidden behind layers of traffic distribution systems and device fingerprinting. The report details three previously unpublished domain portfolio actors who weaponize typosquatting, DNS manipulation — including rare “double fast flux” techniques highlighted in a 2025 advisory from Cybersecurity and Infrastructure Security Agency — and even misconfigured name server records to evade detection and funnel real users toward malicious advertisers. Beyond malvertising, some parked lookalike domains collect misdirected email, fuel business email compromise, and exploit outdated links — including those surfaced by generative AI — underscoring how a simple typo can expose users and enterprises to significant risk. The research can be found here: Parked Domains Become Weapons with Direct Search Advertising Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:05.7	Hello, everyone, and welcome to the Cyberwire Research Saturday. I'm Dave Bittner,
0:22.6	and this is our weekly conversation with researchers and analysts tracking down the threats and vulnerabilities, solving some of the hard
0:28.3	problems and protecting ourselves in a rapidly evolving cyberspace. Thanks for joining us.
0:47.0	This came to our attention because we were basically visiting a website to check it out for research purposes, which we expected to be parked.
0:49.9	In other words, we expected it to just show that splash scene that we've all seen for decades that says,
0:55.6	this domain may be available for sale.
0:58.1	And instead, it was like a whip, whip, whip.
1:02.2	And suddenly you had a thing that said, there's a virus on your machine.
1:07.9	That's Dr. Renee Burton, Vice President of Info Blocks Threaten Tell.
1:12.7	The research we're discussing today is titled Parked Domains and Direct Search, an underreported security risk.
1:26.2	So we realized, wait a second, that's not parked, and then tried to understand, like, how large is this problem?
1:35.0	So can we just start with some basic stuff here?
1:38.8	I mean, when we talk about a parked domain, what do most people expect that to mean?
1:44.8	And what did your team find instead?
1:47.6	So a parked domain traditionally is for domain monetization.
1:52.5	There's a whole industry in this.
1:54.7	And certainly not one of those domain monetization experts,
1:59.1	but essentially they buy large numbers of
2:02.5	domains that are typos. There are natural things that you would, you know, in the classic
2:08.0	sense of park domains, they would buy, you know, one finger off type of whatever you were
2:13.7	going to type, Netflix.com. Instead, maybe that, you know, L would be a K or something.
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.