Estää alle 30 päivää sitten rekisteröityjä verkkotunnuksia. Näiden verkkotunnusten on tiedetty olevan haitallisten toimijoiden suosimia, joista aloittavat haittakampanjoitaan.

Block domains that, after having been dormant for a while, are suddenly becoming active. This behavior is more often than not a sign of malicious activity.

Block domains generated by Domain Generation Algorithms (DGAs) seen in various families of malware that can be used as rendezvous points with their command and control servers.

Block domains that impersonate other domains by abusing the large character set made available with the arrival of Internationalized Domain Names (IDN) — e.g. replacing the Latin letter "e" with the Cyrillic letter "е".

Estää haitallisten toimijoiden rekisteröimät verkkotunnukset, jotka on kohdistettu käyttäjille, jotka kirjoittavat verkkosivuston osoitteen väärin selaimeensa — esim. gooogle.fi google.fi:n sijaan.

Estää tunkeutujia ottamasta laitteita hallintaan Internetin kautta estämällä DNS-vastauksia, jotka sisältävät yksityisiä IP-osoitteita.

Dynamic DNS (or DDNS) services let malicious actors quickly set up hostnames for free and without any validation or identity verification. While legit DDNS hostnames are rarely accessed in every-day use, their malicious counterparts are heavily used in phishing campaigns — e.g. paypal‑login.duckdns.org.

Prevent the unauthorized use of one's devices to mine cryptocurrency.

Parked domains are single-page websites often laden with ads and devoid of any value. Parked domain monetization can sometimes get mixed up with suspicious practices and malicious content.

Block Top-level Domains (TLDs) known to be favored by threat actors because of their low price, the absence of vetting or the lack of legal recourse.