I was really against .zip and .mov domains when Google announced making them new top-level domains, because it’s a fucking wet dream for malicious actors. But either people gotten smarter or browsers/sites are better at distinguishing files from links these days. There was an initial uptick in phishing, but it quickly died down.