Not specific to .US really

Pretty much every new gTLD that can be registered on "promotional" first year prices below .com/.net/.org harbors a large than usual proportion of phishing domains and suspicious things, because one of the sole operational criteria for phishers registering disposable domains that might have useful lives of only hours or a few days, in bulk, is the cost per unit.

".us" is in much the same situation because I am seeing promotional prices of $4.50 to $5 per domain for the first year.

On Thu, Nov 2, 2023 at 1:31 PM goemon--- via NANOG <nanog@nanog.org> wrote:

https://krebsonsecurity.com/2023/10/us-harbors-prolific-malicious-link-shortening-service/

"The NTIA recently published a proposal that would allow registrars to
redact all registrant data from WHOIS registration records for .US
domains. A broad array of industry groups have filed comments opposing the
proposed changes, saying they threaten to remove the last vestiges of
accountability for a top-level domain that is already overrun with
cybercrime activity."

What hope is there when registrars are actively aiding and abeting criminal enterprises?

Are there any legitimate services running solely on .us domain names?

-Dan