Domain rotation is a technique use by malware distributors to drive traffic from multiple domains to a single IP address that is controlled by the distributor. The goal of domain rotation is to make it harder for a network administrator to blacklist the malware distributor. Once a domain is blacklisted, it is dropped from rotation and another one takes its place.

See also: white list

01 Nov 2010