Spammers are co-opting the top-level domains (TLDs) of obscure island nations as a new tactic to avoid spam filters, according to McAfee.In the past, spammers have ordinarily used sites with well-known TLDs such as .com or .info to advertise their wares. But McAfee’s researchers began to notice a steep rise in the number of junk e-mails using .st domain names, .st being the TLD for Sao Tome and Principe, islands off Africa’s west coast.Digging further, they found that Sao Tome and Principe aren’t alone, with domains turning up from the Isle of Man, Tokelau in the South Pacific, Tonga, Tuvalu and others.“Some of these islands have dozens of spammed domains per square mile,” said McAfee senior development manager Guy Roberts, in a statement. Indeed, Sao Tome and Principe, with 1,001 square kilometers of land area, are the biggest of the islands to have turned up in McAfee’s survey. The other TLDs favored by spammers, in descending order by size, are Tonga (.to), the Isle of Man (.im), American Samoa (.as), Tuvalu (.tv), Cocos (Keeling) Islands (.cc) and Tokelau (.tk), the smallest at 10 square kilometers.The technique is intended to confuse spam filters, which examine in-message links as one way of detecting junk e-mail. -Matthew Broersma, Techworld.com (London)Related Links:StopSpamAlliance Puts Crosshairs on SpamSpam’s New Image (CIO)Keep checking in at our CSO Security Feed page for updated news coverage. Related content feature Top cybersecurity M&A deals for 2023 Fears of recession, rising interest rates, mass tech layoffs, and conservative spending trends are likely to make dealmakers cautious, but an ever-increasing need to defend against bigger and faster attacks will likely keep M&A activity steady in By CSO Staff Sep 22, 2023 24 mins Mergers and Acquisitions Mergers and Acquisitions Mergers and Acquisitions brandpost Unmasking ransomware threat clusters: Why it matters to defenders Similar patterns of behavior among ransomware treat groups can help security teams better understand and prepare for attacks By Joan Goodchild Sep 21, 2023 3 mins Cybercrime news analysis China’s offensive cyber operations support “soft power” agenda in Africa Researchers track Chinese cyber espionage intrusions targeting African industrial sectors. By Michael Hill Sep 21, 2023 5 mins Advanced Persistent Threats Cyberattacks Critical Infrastructure brandpost Proactive OT security requires visibility + prevention You cannot protect your operation by simply watching and waiting. It is essential to have a defense-in-depth approach. By Austen Byers Sep 21, 2023 4 mins Security Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe