Online security magazine Info Security is reporting that proposed changes to domain rules in the European Union might force anonymous registrants to publish their data openly.
This provision was added to the “NIS2” legislation.
“In order to ensure the availability of accurate, verified and complete domain name registration data, TLD registries and entities providing domain name registration services should be required to collect domain name registration data,” it explains.
Online privacy advocates are concerned that these changes might stifle activists due to the removal anonymity, but security experts reacted to the news with approval.
“This raises the bar and makes it expensive for easy cyber-criminality like business email compromise (BEC) and credential phishing campaigns. Additionally, this reduces the attacking area left to monitor as it reduces the number of registrars that attackers can use,” according to Domain Tools Senior Analyst Chad Andersen.