Criminals often register their own domain name to perform phishing attacks. Unlike the other common phishing site scenarios (including hacked servers, open redirects, and abuse of free webhosting), phishing sites that have their own domains name can be harder to remove. Only the hosting and DNS providers and the domain registrar are able to take the site down and also likely to cooperate. Read the full story on Netcraft.com: 2016 security stories that were most top-of-mind for security professionals and consumers.
Source: https://threatpost.com/faster-actions-needed-against-phishing-domains-062209/72843/