"The Real Risks in Google's New .Zip and .Mov Domains"

Google released eight new Top-Level Domains (TLDs) at the beginning of May. These are the suffixes at the end of URLs, such as ".com" or ".uk." The new TLDs include ".zip" and ".mov," which are expected to invite phishing and other forms of online fraud. Since both of them are also common file extension names, they stand out. The former, ".zip," is used for data compression, whereas ".mov" is an Apple-developed video format. The concern is that URLs resembling file names will increase opportunities for digital scams such as phishing, which deceive web users into clicking on malicious links disguised as legitimate. In addition, the two domains may exacerbate the issue of programs mistaking file names for URLs and automatically adding links to the file names. Scammers could purchase ".zip" and ".mov" URLs that are also common file names, so online references to files with those names could automatically link to a malicious website. This article continues to discuss the new top-level domains that could be used in phishing attacks. 

Wired reports "The Real Risks in Google's New .Zip and .Mov Domains"