News archive
The Anatomy of a Scam Domain: How to Stay Safe Online
_large.webp)
Examine the Domain Name
Fraudsters often create domains that closely resemble well-known brands or companies. In some cases, the differences are easy to spot; in others, they are so subtle that even experienced users might overlook them. For example, replacing google.com with g00gle.com is an obvious red flag. However, a scammer could replace the lowercase “l” in paypal.com with an uppercase “I” (paypaI.com), which can be much harder to detect.
Also, be wary of domain names that contain unnecessary words. Scammers often add terms like "secure" or "support" to create a false sense of security. Legitimate companies don’t need to include these words in their domains. For example, avoid clicking on links like facebook-secure.com or paypal.support.com, as they are likely fraudulent.
Pay Attention to the Domain Extension
Reputable brands and organizations use widely recognized or country-specific domain extensions. These include .com, .org, or regional domains such as .ee (Estonia) and .fi (Finland). Scammers, unable to register official domains, often use lesser-known or suspicious extensions like .xyz or .top to carry out their schemes.
In addition, remember to also check the maid domain of the sub domain. Remember, that subdomain is located before the main domain. For example, one of the subdomains of internet.ee is auction.internet.ee. However, if you see the domain bank.login.ee, the main domain is “login.ee” and the subdomain is “bank”. This is designed to mislead the user and increase reliability.Check the Security of the Connection
A quick way to assess a website's security is by looking at the beginning of its web address. Legitimate sites use an encrypted connection, indicated by "https://" at the start of the URL. If a site only has "http://" (without the “s”), it may not be secure. However, it's important to note that scammers have adapted and now also use https:// to appear more legitimate. Therefore, always look for additional signs of fraud.
Use WHOIS Lookup Tools
Scammers can be deceptive, and some fraudulent websites may not have obvious red flags. In such cases, checking the domain's registration details can provide more insight. You can use WHOIS lookup tools to see who registered the domain and when. For .ee domains, you can verify details through the search engine on internet.ee. To stay safe, avoid clicking directly on links; instead, copy and paste them into a trusted WHOIS search tool.
Research and Read Reviews
Since scams are increasingly common, chances are that others have already encountered similar fraudulent websites or scam emails. If you receive a suspicious email or come across an unfamiliar website, do a quick online search. Check if others have reported similar cases on forums, social media, or scam alert websites.
Be Cautious with Links and Hypertext
The most important rule is never to click on suspicious links or messages, especially if they redirect you to an unknown page. Before clicking on a hyperlink, hover over it to see the actual URL—it will appear in the lower-left corner of your browser. This is crucial because cybercriminals often disguise malicious links behind legitimate-looking text. For example, an email may display a blue hyperlink appearing as paypal.com, but in reality, it might lead to a completely different address. Only click on links if you are certain they are safe.
Keep your domains safe
For entrepreneurs, it is important to keep in mind the timely renewal of domain registration. This way, you can be sure that the use of your company name is in your hands alone and that it cannot be used for malicious purposes (even in the future). All expired domains (not just .ee) will become available for registration to anyone interested all over the world at a certain point. In the case of the .ee domain, a domain auction is used, which gives you one last chance to own the domain. Remember that cybercriminals are especially interested in domains that are associated with active web traffic and good search engine visibility. It is safest to register a .ee domain for ten years - this way you do not risk losing your domain if you forget to renew it on time.Even if a domain or website appears trustworthy at first glance, it’s always best to stay cautious. If you encounter a scam or fall victim to cyber fraud, report it to the relevant authorities. For example, in Estonia, you can report cybercrime to the Police and Border Guard via their cybercrime form: https://cyber.politsei.ee/.
News
Projects
.ee registry supports the Estonian internet community - see the list of projects funded in 2025!
Every year, the Estonian Internet Foundation (EIF) gives out grants to help grow and support the local internet community. This year, the focus was on cybersecurity—helping people stay safe online and learn important tech skills. The money for these grants comes from selling .ee domain names.
News
Strategy
What’s Next for .ee? Big Ideas and Smart Changes
The Estonian Internet Foundation (EIF) works in 3-year cycles. Every few years, the team comes together to think about what’s important right now and what will matter in the future. After that, we plan the actions to keep things moving forward. This year marks the start of a new cycle for 2025–2027.
_large.webp)
News
Data
What Happens to .ee Domains When a Company Closes?
The Estonian Internet Foundation (EIF) works hard to keep the .ee domain registry accurate and up to date. One way we do this is by checking if the Estonian companies that own .ee domains are still active. If a company has been shut down, we try to transfer the domain to someone who still uses it—or we may delete it so someone else can register it.