May 2023: New Domain Activity Highlights    | WhoisXML API

WhoisXML API Blog

May 2023: New Domain Activity Highlights

Of the millions of domains registered on 1–31 May 2023, WhoisXML API researchers studied a randomized sample of 31,000 domains to determine commonalities among their registrant countries, registrars, and TLDs. We also examined domains’ text string usage to uncover potentially emerging trends. This study’s findings and links to threat reports developed using DNS, IP, and domain intelligence sources are summarized below.

Zooming in on the May NRDs

TLD Distribution

The .com TLD extension remained the most used, accounting for 54% of the total May domain registration volume. In second place was .xyz, with a 5% share. The .org TLD extension went up a notch to the third from the sixth spot in April, with a 4% share. The rest of the top 10 mostly remained the same, except for .cfd, which accounted for 2% of the total and replaced .info.

Top TLDs of May NRDs

WHOIS Data Redaction

About 73% of the NRDs had redacted WHOIS records, most of which used Domains By Proxy, LLC (29%), followed by Withheld for Privacy (16%) and Contact Privacy (12%). The rest of the top 10 privacy protection service providers were Privacy Protect (5%), Whois Privacy Protection Service by onamae.com (4%), PrivacyGuardian.org (1%), Private by Design, LLC (1%), and Whois Proxy (1%).

Some registrants used the terms Redacted for privacy (2%) and GDPR Masked (1%) in their registration organization fields.

Top privacy redaction methods of May NRDs

Only 9% of the NRDs had unredacted WHOIS records based on their registrant organization fields. Even fewer had public registrant email addresses. Finally, around 18% of the NRDs left their registrant organization details blank.

WHOIS redaction of May NRDs

Registrar Distribution

GoDaddy has been the top registrar for months and remained so in May, accounting for 22% of the total domain registration volume. It roughly accounted for the same volume in March and April. The other registrars on the top 10 remained the same, too. They were Namecheap (16%), Google (7%), GMO Internet (4%), Hostinger (3%), UAB (3%), Tucows (3%), PDR Ltd. (3%), Alibaba (3%), Gname.com (2%), and NameSilo (2%).

Top registrars of May NRDs

Top Registrant Countries

The U.S. accounted for 44% of the total NRD volume, followed by Iceland with a 14% share, Canada with 10%, China with 8%, and Japan with 4%. The U.K., Russia, Malaysia, Turkey, and Brazil completed the top 10 registrant countries.

Top registrant countries of May NRDs

Appearance of Common Strings among the SLDs

The popularity of internationalized domain names (IDNs) continued to ensue, as xn remained among the most-foundused text strings. Tech terms like ai, it, and app and e-commerce strings, such as shop, store, and sale, were also commonly found among the NRDs.

The appearance of job, bet, and live was also noteworthy. The word cloud below shows these and the other commonly used strings.

Appearance of Common Strings among the SLDs

Cybersecurity through the DNS Lens

Below are some of the threat reports we published in May.

You can find more reports we created in the past months here.

Feel free to contact us for more information about the products and capabilities used to analyze domain registration events or support other use cases.

Try our WhoisXML API for free
Get started