Predicting Cyber Fraud Through Real-World Events: Insights from Domain Registration Trends

This report analyzes over 213 million newly registered domains to show how attackers rapidly register fraudulent infrastructure around real-world events (crypto milestones, natural disasters, and financial news). Using keyword classifiers, semantic-shift analysis, and clustering, researchers identified event-driven spikes—short, rapid surges for disasters and persistent, high-fraud waves for crypto—provided example suspicious domains and IOCs, and recommended integrating NRD monitoring and event awareness into threat-hunting workflows to detect and prioritize emerging fraud campaigns earlier.