From .com to .beauty: The evolving threat landscape of unwanted email

In 2023, newer generic Top-Level Domains (TLDs) have been predominantly used for spam and malicious attacks. These TLDs include those linked to the beauty industry, such as .uno, .sbs, and .beauty, all introduced since 2014. Despite excluding TLDs with fewer than 20,000 emails, our analysis covers unwanted emails considered spam and malicious from more than 350 different TLDs. The most common source of spam and malicious emails is the .com domain, accounting for 67% of all such messages. Cybercriminals often leverage the guise of authenticity to carry out phishing attacks, with 90% of cyber attacks starting with phishing. Cloudflare's Cloud Email Security service helps protect customers from unwanted emails and provides insights into email security trends.