Bench Notes

Experts Push Measures to Stop AI Domain Abuse

By Ar Putri · · 3 min read
Experts Push Measures to Stop AI Domain Abuse - ai domain abuse
Experts Push Measures to Stop AI Domain Abuse

Preventing AI-powered domain name abuse has become a priority for the internet’s core infrastructure as generative tools make fraud operations faster and cheaper.

AI accelerates domain‑name fraud

Artificial intelligence has reshaped many online services, from search to customer support. At the same time, the same technology allows malicious actors to create convincing fraudulent sites at scale. Where once a phishing domain required technical skill and coordination, generative AI can produce realistic copy, multilingual phishing content and product listings within minutes.

Security experts now refer to the perpetrators as “bionic infringers.” They blend automated generation with human oversight, producing hybrid attacks that evade simple detection. The result is a cycle of rapid deployment, takedown, and redeployment that strains traditional defenses.

Registrars and registries as a line of defense

Registrars sell domain names, while registries manage top‑level domains (TLDs). Both sit at the foundation of internet governance and are increasingly expected to act as active infrastructure, not just passive service providers. Their responsibilities include enforcing policies, spotting threats early and, when presented with evidence, suspending abusive domains.

Related: China Business Law Awards now open

One notable shift is the move toward AI‑driven screening at the point of registration. Instead of reacting after abuse has occurred, registries can embed detection into the registration workflow, scanning each new domain as it is created. The National Internet Exchange of India (NIXI) has implemented a four‑layered AI system for the .in country code domain.

During a six‑month pilot, NIXI reported that the system flagged and neutralised more than 24,000 fraudulent websites, protecting over two million users and cutting response times to under an hour from the moment a suspicious domain went live. A highlighted case involved stopping 143 counterfeit State Bank of India sites before any victims were targeted.

On 19 June, NIXI added an AI‑powered WHOIS screening platform to further verify and monitor registrations. The added layer aims to strengthen domain data integrity from the very first step of the registration process.

The registrar side faces a structural gap. When a single domain in a registrant’s portfolio is identified as abusive, there is no current mandate to examine other domains owned by the same party. Bad actors exploit this loophole, rotating through multiple domains as each is taken down. Closing this gap would require registrars to conduct associated‑domain analysis and act on patterns of abuse.

Related: Benefits of Working With a Workers Compensation Lawyer

Shared intelligence is the third pillar of a broader solution. Threat data exchanged among registrars, registries, researchers and law‑enforcement agencies makes it harder for infringers to hide. Coordinated signals about abusive actors and registration trends improve the overall resilience of the domain ecosystem.

Comparing this effort to earlier attempts at manual domain monitoring shows a clear evolution. Past strategies relied heavily on human review after complaints arrived, often leading to delayed responses. The AI‑assisted approach, by contrast, seeks to pre‑empt abuse, mirroring how other sectors have moved from reactive to predictive security models.

While AI‑enabled defenses are still developing, the NIXI example illustrates that technology can be turned against the very threats it helped create. Implementing AI‑assisted screening, improving verification processes and encouraging information sharing are steps that registrars and registries worldwide may need to consider to keep pace with evolving tactics.

Ar Putri

Leave a Reply

Your email address will not be published.