Expansion is also apparent in the range of domains used: the phishing sites discovered in 2015 were spread across 280 TLDs, but last year 432 TLDs were involved. The trend was linked mainly to the availability of very cheap domain names under new TLDs (nTLDs). Compared with 2015, the number of phishing attacks from nTLDs …