XYZ Registry takes a firm stance against DNS abuse to protect our domain space. Over the past decade, we’ve developed an adaptive anti-abuse program designed to address emerging threats. Our team proactively identifies and mitigates phishing, malware, spam, and other forms of abuse across our TLDs, working with trusted cybersecurity partners to enforce our Anti-Abuse Policy and maintain trust across our namespaces.
Effective abuse mitigation depends not only on detection, but on coordination across the internet ecosystem. Registries, registrars, hosting companies, security researchers, and commercial platforms all play a role in identifying and responding to threats.
This quarter, we are highlighting the importance of consistent and responsible reporting of abuse. Detection capabilities across the industry have continued to improve, and many organizations, including cybersecurity vendors and commercial platforms, are increasingly effective at identifying abusive domains and malicious activity. However, detection alone is not enough to mitigate harm.
Timely reporting remains a critical step in the abuse response lifecycle. When actionable intelligence is not shared with the responsible registry or registrar, opportunities to remediate abuse can be delayed or missed entirely. In some cases, organizations may identify abusive activity but do not consistently report it through established enforcement channels.
XYZ Registry accepts abuse reports through several channels to ensure that bad actors are flagged and acted upon efficiently. A public-facing form on our website (https://gen.xyz/abuse) provides an accessible intake point for anyone to submit reports about domains involved in phishing, malware distribution, spam, or other harmful activity. XYZ also receives reports through direct email [email protected], as well as via established industry threat feeds. Additionally, XYZ participates in coordinated reporting relationships with security platforms and other trusted notifiers, and offers automated methods for reporting, enabling a more structured format for entities who can report at scale. XYZ has joined the Trusted Notifier Network (TNN), in anticipation of expanding this network even further.
We can collectively reduce harm and strengthen trust across the internet by improving how abuse is reported and acted upon. Organizations that hold actionable threat data have a meaningful role to play, and integrating and sharing it makes the broader ecosystem stronger for everyone.
The Anti-Abuse Quarterly is published to the XYZ Registry Anti-Abuse hub on https://xyz.xyz/abuse. Visit to learn more about our monitoring process, find information on how to report abuse, and understand the actions we take in collaboration with industry partners and law enforcement.
As we continue to safeguard our domain space, these resources serve as a testament to our unwavering commitment to a safer internet. We encourage you to join us in the ongoing fight against online abuse.
To report abuse of .xyz or any XYZ Registry TLD, please open a ticket at https://gen.xyz/abuse or email [email protected].
XYZ is proud to share about the many incredible members that make up the XYZ community! We encourage you to do your own research before using the products and services of the websites we feature. The information about products and services contained in this blog post does not constitute endorsement or recommendation by XYZ.
