Edition ZDNet reports that this week Proofpoint filed a lawsuit against Facebook, as the social network is trying to seize the domain names, which the company uses information security within the framework of the preparation of the study, designed to increase awareness about phishing.
The counterclaim to Facebook stems from the fact that on November 30, 2020, the social network created a UDRP (Uniform Domain-Name Dispute-Resolution) request to force the domain name registrar Namecheap to transfer control over a number of domain names that imitated the brands Facebook and Instagram. These are domains such as facbook-login.com, facbook-login.net, instagrarn.ai, instagrarn.net and instagrarn.org.
In its lawsuit, Proofpoint explains that the UDRP should not be applied to these domains because the company used domains that mimic Facebook and Instagram “in good faith and for legitimate purposes.” Information security experts write that phishing awareness tests are critical for the safety of the company’s customers and even for the safety of Facebook itself, because they teach users to recognize fake sites (including those imitating Facebook and Instagram), as well as phishing attacks in general. From which Facebook also benefits, albeit indirectly.
In addition, users who click on links from Proofpoint “phishing tests” are always notified that they took an unwanted action, but their Facebook account credentials were not compromised. These sites also explain that they are owned by Proofpoint and are created for educational purposes, to train employees.