Hi
I am Dirk Bhagat, CTO for .Club Domains.
I second what Eric Renfro and rustleg have said regarding the Blanket blocking of whole TLDs.
The implications of this "Guilty until proven innocent" strategy are huge and completely unacceptable. It's completely unfair to thousands of site owners that have customers scared away simply because of a false positive.
In addition, once users realize that domains are safe even though the browser guard says they're not safe, they will ignore the warning and will continue to the site. Which then means that when there's a real malicious threat, users will expose themselves to it, believing its just another false alarm.
The Suspicious TLD feature blocks domains like:
Coffee.club - an ecom membership site for coffee lovers
CSE.club - a Scientific community site in Algeria
Salonsustainability.club - a community site that focuses on Sustainability and recycling.
and there are hundreds of thousands of others in .Club and in other TLDs like .online, .info that are also blocked by default.
The assertion that you see a lot of abuse from the newer extensions does not hold water in the case of .Club and probably other new gTLDs as well.
Spamhaus, an anti abuse site, lists and compares TLDs with respect to their ability to control abuse in their namespace.
It lists .CLUB's score at 0.06 compared with .COM at 0.54. The lower the score the better and it takes into account the size of the TLDs as well.
Clearly, .Club has one of the lowest (and best) scores with respect to abuse management. See here: https://www.spamhaus.org/statistics/tlds/
Even forbes pointed out this contradiction today with respect to .Club and .Com.
https://www.forbes.com/sites/barrycollins/2021/01/27/are-club-websites-unsafe-this-security-firm-says-so/?sh=32e7b9d835d6
When will this be fixed guys?