New data on DNS abuse reveals most malicious domains remain active beyond 24 hours, while a handful of registrars host the bulk of infrastructure, leaving India’s population of first-generation internet users uniquely exposed to fraud.