NEW! DNS Inspector is an automated testing system that reveals your infrastructure security vulnerabilities. Learn how it works →
Book a discovery call

Articles

Curated Press on Domain and DNS Compromises To help our web audience better understand DNS related security exposures and compliance gaps this curated article page is dedicated to educating business leaders, IT and infrastructure teams. The more we understand the exposures, the better we can prevent them.
Source: Krebs On Security GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week.

Source: Domain Name Wire GoDaddy (all of it) went down this evening

GoDaddy had technical difficulties Tuesday evening that took down its entire network, including websites hosted on GoDaddy.

Source: ARS Technica DNS Cache Poisoning, 2008’s Internet Attack, Returns

In 2008, researcher Dan Kaminsky revealed one of the more severe Internet security threats ever: a weakness in the domain name system that made it possible for attackers to send users en masse to imposter sites instead of the real ones belonging to Google, Bank of America, or anyone else.

Source: InfoSec DNS security best practices: Preventing DNS hijacking, poisoning and redirection

The Domain Name System (DNS) is one of the fundamental protocols of the Internet. It provides a lookup service that converts domain names (like google.com) into IP addresses (like 192.168.0.0).

Source: Circle ID The State of DNS Abuse: Moving Backward, Not Forward

ICANN’s founding promise and mandate are optimistic — ensure a stable and secure internet that benefits the internet community as a whole. 

Source: Naked Security by Sophos Company web names hijacked via outdated cloud DNS records

US security researcher Zach Edwards recently tweeted about finding 250 company website names that had been taken over by cybercriminals.

Source: Information Security Buzz Zoom Phishers Register 2000 Domains in a Month

Over 2000 new phishing domains have been set up over the past month to capitalize on the surging demand for Zoom from home workers. Zoom could solve this if they owned their own Brand Top Level Domain .ZOOM

Source: Dark Reading Companies Are Failing to Deploy Key Solution for Email Security

Business Email Compromises (BEC) threats continue at a cost level of almost $10B per year. Time to set email security policies on all your domains with at least DMARC and SPF. Set it and monitor for compliance. Keep your company and customers safe.