Researchers at watchTowr Labs spent $20 to purchase an expired .mobi top-level domain (TLD) from an inactive WHOIS server. After a few days, they were hit with around 2.5 million WHOIS queries from over 135,000 distinctive systems. The team’s actions demonstrated that many organisations have not updated their systems to recognise the current .mobi WHOIS server. If a malicious actor had the outdated domain, this could lead to issues such as issuing fraudulent SSL/TLS certificates or obtaining remote code execution.

What to look out for at RSAC Conference 2025
At the upcoming RSA Conference, the focus will be on how AI can transform security. However, traditional security threats will also be discussed alongside the