Regarding those numbers, can we see how many of the phising reports that you acted upon turned out to be associated? i.e. the domains belonging to the same customer.

This way we could have an idea as to how much work the ADC would spare you (because you would not had received these additional reports if you actioned on all domains proactively).

thanks.

Naoum

ΜΕΓΓΟΥΔΗΣ Ναούμ
Αστυνόμος Α'
Διεύθυνση Δίωξης Κυβερνοεγκλήματος
Τμήμα  Διαδικτυακής  Προστασίας  Ανηλίκων 
Λ. Αλεξάνδρας 173, 115 22, Αθήνα

MENGOUDIS Naoum
Police Major
Cyber  Crime  Directorate
Online Child Protection Department
Alexandras Avenue 173, 115 22, Athens

T: (+30) 2106476475
E: n.mengoudis@cybercrimeunit.gov.gr
-------------------
Email  Disclaimer
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please notify the system manager. This message contains confidential information and is intended only for
the individual named. If you are not the named addressee you should not disseminate, distribute or copy this email. Please notify the sender immediately
by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.If you  are not the intended recipient you are notified that
disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited.
Think green before printing

From: Reg Levy via Gnso-dnsabuse-pdp <gnso-dnsabuse-pdp@icann.org>
Sent: Friday, April 3, 2026 22:10
To: Feodora Hamza via Gnso-dnsabuse-pdp <gnso-dnsabuse-pdp@icann.org>
Subject: [Gnso-dnsabuse-pdp] SME, weighing in (fork)
 
I’d like to respond to Ching’s request for data:

It would be very helpful if the SMEs (such as NetBeason or NetCraft) & the Registrars could kindly share the following information (i.e. as required by by RAA 3.18.4) which will help ascertain to the level of effort that will actually be needed to conduct ADC:

  • Number of complaints received in 2025

  • Number of complaints that were valid

  • Number of complaints that were actioned


I would submit that the number of complaints received by reporters is less relevant than those received by registrars, since we are the ones acting (and upon whom the onus of the new policy or best practices will fall). I’d also like to note that we are required to maintain records but not create them; what follows should not be understood to be readily available to any registrar and is only available to me because of an unrelated internal project.

In 2025, IANA 69, one of the four registrars my team manages, received just under 100k abuse complaints marked as “phishing” through our online forms. Note that this does not include any other type of DNS Abuse or other abuse and does not include phishing reported through different means. Fewer than 10,000 were legitimate phishing complaints. We have to sift through 90% chaff to even get to the phishing reports—and that doesn’t look at the validity of the reports in the first place.

   ────────────────────────────┼─────────
  │          Category          │ Tickets │
  ├────────────────────────────┼─────────┤
  │ TOTAL                      │ 98,212  │
  ├────────────────────────────┼─────────┤
  │    Noise                   │ 39,267  │
  ├────────────────────────────┼─────────┤
  │    Legitimate (all others) │ 58,945  │
  ├────────────────────────────┼─────────┤
  ├────────────────────────────┼─────────┤
  │ MISROUTED REQUESTS         │ 12,298  │
  ├────────────────────────────┼─────────┤
  │    Support request         │  6.142  │
  ├────────────────────────────┼─────────┤
  │    Sales inquiry           │  3,133  │
  ├────────────────────────────┼─────────┤
  │    Technical support       │  1,569  │
  ├────────────────────────────┼─────────┤
  │    Complaint, all other    │  1,454  │
  ├────────────────────────────┼─────────┤
  ├────────────────────────────┼─────────┤
  │ DOMAIN DISPUTES            │ 13,609  │
  ├────────────────────────────┼─────────┤
  │    Domain ownership        │  6,120  │
  ├────────────────────────────┼─────────┤
  │    Registry compliance     │  4,243  │
  ├────────────────────────────┼─────────┤
  │    UDRP                    │  1,828  │
  ├────────────────────────────┼─────────┤
  │    Whois issues            │    841  │
  ├────────────────────────────┼─────────┤
  │    Whois inaccuracy        │    577  │
  ├────────────────────────────┼─────────┤
  ├────────────────────────────┼─────────┤
  │ CONTENT CONCERNS           │ 15,062  │
  ├────────────────────────────┼─────────┤
  │    Hosting (non-DMCA)      │  7,833  │
  ├────────────────────────────┼─────────┤
  │    DMCA                    │  3,888  │
  ├────────────────────────────┼─────────┤
  │    Law enforcement         │  3,341  │
  ├────────────────────────────┼─────────┤
  ├────────────────────────────┼─────────┤
  │ Phishing                   │  8,291  │
   ────────────────────────────┴─────────

I hope this is helpful context for the conversation.

Servus,
Reg


--
Reg Levy | Associate General Counsel – Domains
+1 (323) 880-0831
Tucows #MakingTheInternetBetter

UTC -7