Home / News

Rise in Cybercrime Exploiting Artificial Intelligence Hype Leads to Growing Threats Within the .ai Domain Space

Web servers using .ai domains. Source Netcraft

Cybercriminals are leveraging the growing popularity of artificial intelligence to perpetrate attacks, capitalizing on the surge in interest following the release of chatbot technologies like ChatGPT. New research by Netcraft reports on the increasing use of .ai domain names where criminals use malicious websites around AI to draw in victims.

AI domain growth: The .ai country code top-level domain (ccTLD), representing Anguilla, has seen a significant uptick in registrations due to the AI industry boom. Large tech companies such as Google and Meta have adopted .ai domains to showcase their AI initiatives, reflecting a broader industry trend. Since 2013, the usage of .ai domains has skyrocketed by over 12,000%.

Rising malicious activity: According to Netcraft, there has been a notable increase in malicious activity on .ai domains in 2023, with phishing attacks constituting most of these nefarious actions. Such domains are frequently used in affiliate marketing scams, tricking victims with false prize surveys.

Costly but coveted: Despite .ai domains being pricier than most, their perceived legitimacy makes them appealing to criminals, especially for cryptocurrency scams. The AI hype has led to a breakdown in traditional cybersecurity habits, with users more inclined to trust and click on .ai links due to their association with legitimate AI products and growing media attention.

Potential risks ahead: The .ai domain space, while still small, is expanding rapidly with many available domains that could be exploited for malicious intent. There’s also concern for future phishing attacks, particularly through typosquatting, as .ai could be easily mistaken for .au domains on common keyboard layouts. However, such tactics have not been widely observed yet.

By CircleID Reporter

CircleID’s internal staff reporting on news tips and developing stories. Do you have information the professional Internet community should be aware of? Contact us.

Visit Page

Filed Under


Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

Co-designer of the TCP/IP Protocols & the Architecture of the Internet




Sponsored byDNIB.com

Threat Intelligence

Sponsored byWhoisXML API

Brand Protection

Sponsored byCSC


Sponsored byVerisign

IPv4 Markets

Sponsored byIPv4.Global

New TLDs

Sponsored byRadix

Domain Names

Sponsored byVerisign