Industry

A DNS Investigation of Shadow-Earth-053

A DNS investigation of Shadow-Earth-053 uncovered hundreds of victim-linked connections and a sprawling infrastructure tied to China-aligned cyber-espionage. Analysis of known indicators exposed additional domains, IP addresses, and registration patterns that broaden the campaign's suspected footprint. more

DNS Deep Diving into FakeWallet Crypto Stealer

A DNS-focused investigation of the FakeWallet crypto-stealer campaign uncovered links to malicious infrastructure, potential victims, and thousands of connected domains, revealing signs of pre-staged operations and suggesting the wallet-phishing scheme was broader and longer-running than first reported. more

IPv4 Market Firms as Demand Holds Strong and Supply Tightens

The IPv4 market is showing renewed firmness as demand remains strong, large-block prices edge higher, and supply tightens in key segments. Recent transaction data suggests stabilization is taking hold, with availability becoming an increasingly important market driver. more

DNS Deep Dive: Pushpaganda Network IoCs

A DNS investigation into Pushpaganda, an AI-powered scam network that infiltrated Google Discovery feeds, uncovered more than 1,000 connected domains, 162 linked IP addresses, and evidence that several infrastructure assets were registered with malicious intent. more

The DNS Anatomy of the Axios Supply Chain Attack

A DNS-focused investigation into the Axios NPM supply chain attack uncovered typosquatting networks, victim-linked infrastructure, and hundreds of connected domains, revealing how malicious actors built and sustained a sprawling cyber campaign around compromised software dependencies. more

An Analysis of the AtlasCross RAT Network IoCs

Hexastrike traced an AtlasCross RAT campaign linked to Silver Fox, uncovering spoofed domains, victim infrastructure, and malicious network artifacts that reveal how attackers exploited trusted software brands to widen compromise and persistence. more

Global Domain Activity Trends Seen in Q1 2026

Q1 2026 domain activity showed registrations concentrated in a handful of TLDs, with 6.7 million new domains flagged as malicious, offering fresh insight into global DNS patterns and cybersecurity risks as shifting registration trends reshape. more

A Look Back at the Top 10 Ransomware of 2025

A retrospective analysis of 2025's top ransomware groups reveals how DNS traces, historical WHOIS records, and network IoCs exposed hidden infrastructure, affiliate activity, and thousands of potential victim connections linked to major cybercriminal operations. more

IPv4 Market Shows Signs of Stabilization as Demand Holds Firm

After months of decline, the IPv4 market is showing signs of stabilization. April pricing held steady across block sizes as resilient demand, broader transaction activity, and improving buyer confidence pointed toward a more constructive market environment through 2026. more

A Network IoC Analysis for 8 Iran-Affiliated APT Groups

An analysis of 191 network indicators tied to eight Iran-affiliated APT groups uncovered malicious domains, active infrastructure, thousands of victim-linked IP interactions, and coordinated DNS activity, revealing the breadth and persistence of Tehran-linked cyber operations amid escalating regional tensions. more

Firms Stick With “.com” While Cyber Risks Redefine Domain Strategy

Corporate domain strategies remain anchored in legacy extensions even as new domains proliferate, forcing firms to balance global reach, regional needs and rising fraud risks in an increasingly complex digital landscape. more

Unearthing DNS Facts about UAT-8099

WhoisXML API analysis deepens understanding of the UAT-8099 campaign, uncovering expanded DNS infrastructure, early indicators of malicious intent, and thousands of linked artifacts, underscoring the group's evolving tactics and regional focus across Asia. more