Hackers Exploit .arpa and IPv6 Infrastructure to Evade Phishing Defenses

Cybersecurity researchers discovered a phishing campaign abusing the .arpa top-level domain and IPv6 reverse DNS mechanisms to bypass detection systems. The attack exploits rarely monitored internet infrastructure and trusted hosting providers to evade email security gateways and domain reputation-based defenses. Researchers at Infoblox identified the technique, which relies on rapidly rotating hostnames and manipulation of fundamental internet protocols.