Spamhaus Quarterly Domain Reputation Update, Q4 2022

17 January 2023


As anticipated, the number of newly observed and listed domains increased in Q4 2022. And with that, there was a steep increase in both compromise malware (+616%) and botnet C&C (+828%) listings. Find the detail and insight in this Q4 report.

Cost-effective protection against malware like Emotet – Border Gateway Protocol (BGP) Firewall

6 December 2022


Malware threats such as Emotet and Qakbot are re-emerging. Here’s an effective and economical way to protect against them.

Additional protection with an expanding CSS dataset

2 November 2022

Blog News

As of Wednesday, November 9th, the CSS dataset will start to grow. We anticipate the addition of 1.5 million listings over the next 4-6 months; that's approximately a 100% increase! Find out why and the impact to you in this blog.

Increased performance and search capabilities for users of IP reputation data via API

28 October 2022

Blog News

Commercial or developer subscribers to any IP datasets via Spamhaus Intelligence API (SIA) will experience improved performance and search capabilities for this service.

Spamhaus Quarterly Domain Reputation Update – Q3 2022

20 October 2022


We bear good news regarding domain name abuse: almost all numbers are down compared to last quarter! See the Q3 trends and find the insight into some of the tactics used by bad actors and advice to circumvent falling victim.

Spamhaus Botnet Threat Update, Q3 2022

13 October 2022


It was a busy quarter for Q3! No rest up over the vacation period with a 38% increase in botnet C&Cs detected by the research team - so there's a lot for you to catch up on. This quarter, we saw a vast amount of botnet C&Cs out of China - download the report to find all the updates.

Dissecting the new shellcode-based variant of GuLoader (CloudEyE)

12 October 2022

Blog Technical Information

One of the Spamhaus Project's malware specialists has been battling GuLoader, attempting to analyze this tricky malware. Here they share their findings and explain how you can extract URLs from GuLoader.

Monthly Malware Digest, Sept 2022

6 October 2022


Using data from's platforms, the report gives an overview of malware campaigns, with insights into malware distribution sites, samples, IOCs & YARA rules.

If you query Spamhaus Projects’ DNSBLs via Amazon Web Services’ DNS move to the free Data Query Service

22 September 2022


Are you currently using the Spamhaus Project’s DNS Blocklists (DNSBLs) and use Amazon Web Services' DNS? If you've answered "yes" to both of these questions, you need to make some changes to your email infrastructure.

New beta release | Rich domain reputation data via API – register now

14 September 2022

Blog News

Discover the rich domain-related data points available via this easy-to-consume API and how you can become one of only 30 beta testers.