The DNS Record: Q3 Security Report 2025

Phishing and deception made up 31.6% of traffic on DNSFilter's network, marking an increase compared to the prior quarter. This amounted to over 750 million queries.

New domains accounted for nearly 40% of traffic requests categorized as malicious.

The DNSFilter network processed billions more DNS queries in Q2 2025 compared to the previous quarter. June specifically recorded the highest DNS traffic volume for that quarter.

Malware was identified as the second most trafficked threat category.

Of the top five country code Top Level Domains (ccTLDs) identified as likely to be malicious, four were associated with island nations. Domains linked to the Faroe Islands (.fo) were the most prevalent, with 27% of their traffic deemed malicious. Other island nations high on this list included Grenada, Mayotte, and Wallis and Futuna.

Almost 4% of DNS traffic was blocked by DNSFilter, which is the highest percentage of blocked traffic on record.

Almost 4% of DNS traffic was blocked by DNSFilter, which is the highest percentage of blocked traffic on record.

New domains accounted for nearly 40% of traffic requests categorized as malicious.