Now on to the obvious question right now, can we simple users do something about this?
Aren't we already doing a lot in our signatures?
Hmm, I don't think this has anything to do with our signatures.
The .xyz and the .online domains are scammers, a lot of users around here including myself have reported google ads, domains to domain registrars and hosting and even video on youtube for all type of possible scams, I don't think that doing 3 minutes of reporting is something that should be considered a task or should be restricted to an ongoing partnership or directly affected users.
If there is a chance that by writing an email or filling out a simple form a scammer will be stopped at least for a while and save somebody from a monetary loss I think that's some well-spent time.
I'm starting to think of adding this to /etc/hosts:
127.0.0.1 google.com
The users who know how to add that and know what it does aren't probably the ones that will fall for a phishing website in the first place.
As for the google suing part, as much as I would see it happening I give it some hell frozen over chances.