Industry

BlackCat Hacks Reddit Again, Take a Look at What the DNS Revealed

The first time the BlackCat ransomware gang breached Reddit's network last February, they phished an employee to hack into the target network. This time, according to a ReversingLabs detailed report, they successfully dropped BlackCat onto the company's systems and threatened to release its data if it fails to pay the ransom. more

Advocacy and Recommendations from the Brand Registry Group on gTLDs, Closed Generics, and IDN Policies

The following is a letter from the Brand Registry Group (BRG) sent to the GNSO Council on Friday, July 14, 2023 . It provides the BRG's perspective on the delayed commencement of the new round of generic top-level domains (gTLDs), the decade-long debate on closed generics, and issues related to Internationalized Domain Names (IDNs). The BRG outlines concerns, commends efforts, and proposes solutions to help advance these important facets of internet policy development. more

Largest Social Media Creator, MrBeast, Relaunches His Official Merch Store on mrbeast.store

Avid philanthropist, entrepreneur, and creator, MrBeast, AKA Jimmy Donaldson, has switched his official merch store from shopmrbeast.com to the more intuitive mrbeast.store. He announced his move to the .Store domain in his most recent video, which garnered close to 70M views in less than 3 days. more

$42 Billion Funding for US Broadband Deployment

Every US state will get at least $107 million to deliver high-speed broadband access to everyone by 2030. Bigger states will get more. California will get $1.9 billion, and Texas will get $3.1 billion. more

MOVEit Bug-CLOP Ransomware Threat Vector Identification Aided by DNS Intelligence

The beginning of the month of June, according to CleanINTERNET, marked the emergence of several zero-day attacks targeting vulnerable MOVEit servers to exfiltrate confidential data. MOVEit Transfer is a managed file transfer software that supports file and data exchange. more

IPv4.Global Achieves ARIN Qualified Facilitator Status

The recently launched Qualified Facilitator Program was developed so buyers and sellers of IPv4 addresses can easily and confidently identify qualified brokers to help them navigate the complex IPv4 address transfer process. more

Tracing Truebot’s Roots through a DNS Deep Dive

On 12 June, the DFIR Report published an in-depth analysis of a Truebot intrusion that began with several page redirects via a Traffic Distribution System (TDS) and ended with dropping a Master Boot Record (MBR) killer wiper onto a victim's computer. The result? more

Radix Releases 2022 Domain Renewals Data

Radix, one of the world's largest portfolio registries, has released a report on domain renewals based on Radix's internal analysis of nTLD renewals in 2022. more

CSC Launches Groundbreaking Domaincasting Digital Blocking Network

CSC, an enterprise-class domain registrar and world leader in mitigating domain and domain name system (DNS) threats, has launched its new Domaincasting^SM digital blocking network - a complement to its current Enforcement services. more

Alleviating the Risks .zip and Similar Domain Extensions Could Pose via DNS Intelligence

Google's announcement of the launch of the .zip ngTLD was met by a lot of debate. Many believe threat actors could abuse the ngTLD for phishing and other malicious campaigns, primarily since it could be easily confused with the .zip file extension. more

Years-Long Wait on ARIN IPv4 Waitlist

ARIN warned that the wait time for IPv4 space from its Waitlist is years, not months, at NANOG 88 in Seattle. There were 632 requests on the list at the end of May 2023, and it grew by 429 requests in the last year. more

Scanning for LockBit Ransomware DNS Traces

ReliaQuest named LockBit one of the most effective and undoubtedly most prolific currently active ransomware groups today. In fact, the malware topped their latest ransomware quarterly list for the first three months of 2023, a continuation of their 2022 observation. more