Difference between revisions of "NIC.cm"
(Created page with "{{CompanyInfo| | logo = Nic cm.png | type = Government | industry = Registry | founded = | founders = | ownership = | head...") |
|||
| Line 21: | Line 21: | ||
}} | }} | ||
| − | The '''Network Information Center Cameroon''' is operated by Cameroon's National Agency for Information and Communication Technologies (ANTIC). | + | The '''Network Information Center Cameroon''' is operated by Cameroon's National Agency for Information and Communication Technologies (ANTIC). Since 2010, ANTIC has been in charge of registry operations for the .cm [[ccTLD]]. |
| + | |||
| + | ==History== | ||
| + | ===Transition from CAMTEL=== | ||
| + | The .cm domain has been a source of trouble throughout its history. In 2006, CAMTEL, the former registry operator, set up a [[Wildcarding|wild card DNS]] entry covering all unregistered .cm domains. This "[[Typosquatting|typosquatting]]" maneuver redirected traffic to a site with pay-per-click advertisements.<ref>[[CAMTEL]]</ref> In 2009, McAfee's "Mal Web" Report identified .cm as the most dangerous space on the internet, with nearly 40% of its active URLs containing some sort of threat to PCs.<ref>[https://www.cnet.com/news/mcafee-uncovers-riskiest-domains/ CNET.com - McAfee Uncovers the Riskiest Domains]</ref> | ||
| + | |||
| + | It seems likely that the proliferation of typosquatting sites, and the associated bad press,<ref>[https://www.forbes.com/2009/12/01/cybercrime-mcafee-spyware-technology-cio-network-cameroon.html?sh=522de3cd20c8 Forbes.com: Cameroon's Cybercrime Boom] (covering the release of the McAfee report), December 2009</ref> was partially responsible for the introduction of new regulations. In December 2010, the government of Cameroon passed Law No. 2010/13, which among other things placed management of the .cm ccTLD in the hands of the National Agency for Information and Communication Technologies (ANTIC).<ref name="cmredel">[https://nic.cm/en/2018/09/18/redelegation-du-cm/ Nic.cm - Support for .cm redelegation]</ref><ref>[http://fakoamerica.typepad.com/files/law_relating_to_cybersecurity_and_cybercriminality-1.pdf English version of Law No. 2010/013 (PDF)]</ref> While many saw the move as a crackdown on malicious uses of the TLD,<ref>[https://www.africt.com/2013/11/cameroon-law-on-cybersecurity-and-cybercriminality.html AfrICT.com - Cameroon Passes Law on Cybersecurity]</ref>, others asserted that the law was largely intended to chill online voices critical of the Cameroonian government.<ref>[https://journals.co.za/doi/10.10520/EJC135792 Rhodes Journalism Review: Cracking Down on the Diaspora and Dissent] No. 31, p. 68 ([https://journals.co.za/doi/pdf/10.10520/EJC135792 PDF])</ref> For its part, ANTIC emphasized cybersecurity and reducing criminality through responsible internet governance, and launched an awareness campaign around those issues.<ref>[https://antic.cm/index.php/en/news-feed/press-releases/229-information-and-sensitisation-of-the-populations-of-the-centre-and-littoral-regions-on-cyber-security.html ANTIC.cm - Press Release]</ref> | ||
| + | |||
| + | While it appears that ANTIC intended to initiate a redelegation request with IANA,<ref name="cmredel" /> IANA has no record of such a request.<ref>[https://www.iana.org/reports IANA.org - Reports]</ref> | ||
| + | |||
| + | ===Post-Transition=== | ||
| + | The .cm TLD remains a persistent source of typosquatting schemes. In 2018 Krebs on Security discussed the findings of security consultant Matthew Chambers regarding a slew of brand name typosquatting .cm domains.<ref>[https://krebsonsecurity.com/2018/03/omitting-the-o-in-com-could-be-costly/ Krebs on Security: Omitting the "o" in com could be costly]</ref> Chambers subsequently provided an update to his research in the spring of 2018: | ||
| + | <blockquote>Sites are still redirecting to scareware publishers, locking up machines, and creating audio alerts. See screenshots and video below. Sites will serve up innocuous ads at times, and others messages will be fake alerts or Flash upgrades. Take note that the results will vary, and there’s a good chance that these sites are looking for “unique visitors.” It’s possible that you will have a different outcome based on your browser, location, or other factors, like language.<ref>[https://blog.infostruction.com/2018/03/21/wrong-spelling-brand-name-hijack/ Infostruction Blog - Wrong-spelling Brand Name Hijack]</ref></blockquote> | ||
| + | |||
| + | Chambers listed many misspellings of popular sites that were still active at the time. | ||
| + | |||
| + | ==References== | ||
| + | {{reflist}} | ||
| + | __NOTOC__ | ||
| + | [[Category:ccTLD Registry]] | ||
| + | [[Category:ccNSO Member]] | ||
Latest revision as of 23:59, 16 February 2021
 | |
| Type: | Government |
| Industry: | Registry |
| Email: | dotcm [at] antic.cm |
| Website: | NIC.cm |
The Network Information Center Cameroon is operated by Cameroon's National Agency for Information and Communication Technologies (ANTIC). Since 2010, ANTIC has been in charge of registry operations for the .cm ccTLD.
History
Transition from CAMTEL
The .cm domain has been a source of trouble throughout its history. In 2006, CAMTEL, the former registry operator, set up a wild card DNS entry covering all unregistered .cm domains. This "typosquatting" maneuver redirected traffic to a site with pay-per-click advertisements.[1] In 2009, McAfee's "Mal Web" Report identified .cm as the most dangerous space on the internet, with nearly 40% of its active URLs containing some sort of threat to PCs.[2]
It seems likely that the proliferation of typosquatting sites, and the associated bad press,[3] was partially responsible for the introduction of new regulations. In December 2010, the government of Cameroon passed Law No. 2010/13, which among other things placed management of the .cm ccTLD in the hands of the National Agency for Information and Communication Technologies (ANTIC).[4][5] While many saw the move as a crackdown on malicious uses of the TLD,[6], others asserted that the law was largely intended to chill online voices critical of the Cameroonian government.[7] For its part, ANTIC emphasized cybersecurity and reducing criminality through responsible internet governance, and launched an awareness campaign around those issues.[8]
While it appears that ANTIC intended to initiate a redelegation request with IANA,[4] IANA has no record of such a request.[9]
Post-Transition
The .cm TLD remains a persistent source of typosquatting schemes. In 2018 Krebs on Security discussed the findings of security consultant Matthew Chambers regarding a slew of brand name typosquatting .cm domains.[10] Chambers subsequently provided an update to his research in the spring of 2018:
Sites are still redirecting to scareware publishers, locking up machines, and creating audio alerts. See screenshots and video below. Sites will serve up innocuous ads at times, and others messages will be fake alerts or Flash upgrades. Take note that the results will vary, and there’s a good chance that these sites are looking for “unique visitors.” It’s possible that you will have a different outcome based on your browser, location, or other factors, like language.[11]
Chambers listed many misspellings of popular sites that were still active at the time.
References
- ↑ CAMTEL
- ↑ CNET.com - McAfee Uncovers the Riskiest Domains
- ↑ Forbes.com: Cameroon's Cybercrime Boom (covering the release of the McAfee report), December 2009
- ↑ 4.0 4.1 Nic.cm - Support for .cm redelegation
- ↑ English version of Law No. 2010/013 (PDF)
- ↑ AfrICT.com - Cameroon Passes Law on Cybersecurity
- ↑ Rhodes Journalism Review: Cracking Down on the Diaspora and Dissent No. 31, p. 68 (PDF)
- ↑ ANTIC.cm - Press Release
- ↑ IANA.org - Reports
- ↑ Krebs on Security: Omitting the "o" in com could be costly
- ↑ Infostruction Blog - Wrong-spelling Brand Name Hijack