A domain suffix is automatically added to anything you type in the browser to search as default if we don't mention the TLD for FQDN.
e.g. (let's assume my internal domain suffix is xyz.com and this is purely for internal purposes and the domain is not used externally or is owned by me).
The issue I am facing is when I search anything in the browser let's say for e.g. (http://jhht) and if I don't specify the TLD (e.g. .com or .org), it adds my domains suffix to it. so now it's treated as jhht.xyz.com and resolves to that webpage.
If the webpage is malicious then there are chances of malware infection.
tried blocking the xyz.com domain via proxy, the proxy only blocks if it's an FQDN and doesn't block anything that does not have an FQDN. We use the Force Point proxy.
please let me know if there is any way by which a suffix is not added by default to your browser address while searching something.
This is an on-premise domain implementation and not azure.