Industry

DNS Analysis of the Keenadu Backdoor Network

Keenadu backdoor embedded in Android firmware exploits supply chains and OTA updates, while DNS analysis of its infrastructure reveals coordinated domains, IP links, and early warning signals pointing to premeditated, scalable cybercriminal operations globally distributed. more

A DNS Exploration of Operation Olalampo

MuddyWater's Operation Olalampo targets MENA entities using new malware and Telegram-based control, as DNS analysis uncovers fresh infrastructure, thousands of linked domains, and expanded indicators pointing to a broader, coordinated campaign. more

DNS Deep Dive: LummaStealer + CastleLoader = Larger Threat

LummaStealer's revival, paired with CastleLoader, reveals a more evasive malware ecosystem, leveraging obfuscation, DNS agility and vast infrastructure to reach over 100,000 potential victims while spawning hundreds of linked malicious domains and IPs globally observed. more

A Look Back at 11 of the Red Report 2026 Featured Threats

An analysis of 11 cyber threats from Red Report 2026 reveals how attackers exploit core MITRE ATT&CK techniques, with DNS and IoC data exposing early warning signals, infrastructure scale, and evolving tactics across campaigns globally. more

IPv4 Market Enters 2026 with Softer Prices but Durable Demand

IPv4 prices continued to decline through 2025, particularly for large blocks, yet demand remained resilient as buyer participation broadened, liquidity improved, and the market transitioned toward more efficient price discovery entering 2026. more

A Close Look under the DNS Hood of CoolClient

Security researchers trace an updated CoolClient backdoor used by HoneyMyte, uncovering malicious domains, subdomains and IP links, and revealing a wider infrastructure of email and DNS-connected assets tied to data theft operations globally active. more

Probing the DNS Depths of PeckBirdy

An analysis of DNS and WHOIS data tied to the PeckBirdy C&C framework uncovers expanded infrastructure, linking known IoCs to malicious domains, IPs, and email-connected assets across years of activity. more

Greater Cyber Resilience Through AI: eco - Association Publishes 5-Step Plan for Companies

eco Association of the Internet Industry releases a white paper outlining a five-step framework to help companies integrate AI securely, counter emerging threats like deepfakes and phishing, and strengthen cyber resilience. more

What Remains of Black Basta Now That Alleged Gang Leader Joined the Most Wanted List?

As authorities pursue Black Basta's alleged leader, new analysis of campaign indicators reveals sprawling infrastructure, thousands of linked domains, and persistent ransomware tactics that rely on phishing, known vulnerabilities, and double-extortion pressure. more

Top 10 Malware of Q4 2025: A DNS Deep Dive

An analysis of 46 DNS indicators tied to seven of Q4 2025's most prevalent malware families reveals early warning signals, coordinated campaigns and hundreds of connected artifacts, underscoring the predictive power of proactive threat intelligence. more

Premium Domains Surge as Renewals Strengthen in H2 2025

Radix reports a 96% surge in premium domain registrations in H2 2025, with strong renewal rates and rising demand across price tiers signalling that high-value digital assets are becoming core, long-term brand infrastructure. more

Exploring the State of Network Infrastructure in 2026

As networks grow faster and more interconnected in 2026, they are also becoming more opaque and fragile, as outsourcing, blurred accountability and AI-driven threats expose deep weaknesses beneath expanding digital infrastructure. more