DNS Security

DNS Security / Featured Blogs

How New Domains are Driving DNS-based Attacks

May 06, 2025

Cyber criminals are the kings of recycling. Once they've found a tactic that works well, they'll keep doing it as long as they can get away with it. That's why it's so important for research teams to keep a close eye on what's happening behind the scenes with web traffic. Case in point? Our team at DNSFilter recently analyzed global DNS activity from the first quarter of 2025 and identified several notable trends.

The 2024-2026 Root Zone KSK Rollover: Initial Observations and Early Trends

Mar 19, 2025

On Jan. 11, 2025, Verisign supported the Internet Corporation for Assigned Names and Numbers (ICANN) in taking a major step to ensure the continued security, stability, and resiliency of the Domain Name System (DNS). While imperceptible to most users, this action - specifically, the introduction of a new Domain Name System Security Extensions (DNSSEC) Key Signing Key (KSK) in the root zone - is the next step of a multi-year-long process to change, or "roll," the cryptographic key that secures the root of the DNS.

How to Convince Your Boss to Deploy DNSSEC and RPKI?

Feb 10, 2025

At the Internet Governance Forum (IGF) 2024 in Riyadh, the Internet Standards, Security and Safety Coalition (IS3C) released a new tool: 'To deploy or not to deploy, that's the question. How to convince your boss to deploy DNSSEC and RPKI'. In this report, IS3C advocates mass deployment of these two newer generation, security-related internet standards, as their deployment contributes significantly to the safety and security of all internet users.

A Review of the 2024 Threat Landscape and Implications for Domain Security

Dec 10, 2024

The cybersecurity landscape in 2024 has been characterised by unprecedented complexity and rapidly evolving threats, presenting significant challenges for organisations across all sectors. As the digital attack surface expands and threat actors employ increasingly sophisticated techniques, domain security has emerged as a critical component of a robust cybersecurity strategy.

Building a “Domain of Trust” - Protecting Online Identity in the Age of AI and 6G

Oct 04, 2024

In today's interconnected world, your business's online identity is increasingly more vulnerable than ever. With the rapid advancement of AI and 6G technologies, cyber threats are evolving at an alarming rate, making it critical to protect your brand's digital presence. How can businesses proactively safeguard their online identity in this changing landscape?

The Dos and Don’ts of DNS Management

Aug 21, 2024

The domain name system (DNS) is vital for businesses as it facilitates customer access to online services and resources. Strategic DNS management plays a pivotal role in cybersecurity, safeguarding against threat vectors and ensuring secure global connectivity across online channels including apps, email, websites, application programming interfaces (APIs) and more.

The Evolution of DNS: Adapting to the Changing Internet Landscape

Jun 27, 2024

The DNS is a crucial part of today's Internet. With the fracturing of the network's address space as a byproduct of IPv4 address run down and the protracted IPv6 transition the Internet's name space is now the defining attribute of the Internet that makes it one network. However, the DNS is not a rigid and unchanging technology. It has changed considerably over the lifetime of the Internet and here I'd like to look at what's changed and what's remained the same.

NIS 2.0 and Its Impact on the Domain Name Ecosystem

May 22, 2024

I recently appeared on the 419 Consulting podcast to discuss the European Union's NIS 2.0 Directive and its impact on the domain name ecosystem. I encourage all TLD registries, domain name registration service providers, and DNS operators to listen to the recording of that session which Andrew Campling has made available.

13th Registration Operations Workshop: Join Us Online on June 4th, 2024

May 20, 2024

As a member of the ROW Planning Committee, I am writing this post on behalf of the Committee and welcome all community members to join us on June 4th. We are celebrating ROW's 10th anniversary! A decade of collaboration and inspiration! Thank you to the incredible community that has fueled this journey!

GAC Communiqués and Community Activity on DNS Abuse

Feb 09, 2024

This blog post and the associated report aim to provide an overview of DNS Abuse 1related issues the Governmental Advisory Committee (GAC), part of the ICANN multi-stakeholder model, has identified. We also summarize the relevant community activity taking place to address these areas of interest and highlight remaining gaps. From 2016 to June 2023, the GAC referenced four primary categories of activity related to DNS Abuse.

Industry Updates

Rounding Up the DNS Traces of RA World Ransomware

Tempering Tax Season Troubles with DNS Intel

Decrypting the Inner DNS Workings of EncryptHub

Tracing the DNS Footprints of REF7707

Igniting a DNS Spark to Investigate the Inner Workings of SparkCat

DNS Deep Diving Into 2025’s Up and Coming Ransomware Families

A DNS Investigation of SEO Manipulation via Bad Seed BadIIS

Malicious Ads Targeting Advertisers in the DNS Spotlight

Sneaking a Peek into the Inner DNS Workings of Sneaky 2FA

Unloading MintsLoader IoCs Using DNS Intelligence

DNS Spotlight: Rockstar2FA Shuts Down, FlowerStorm Starts Up

DNS Deep Dive: Peeking into Back Doors to Abandoned but Live Backdoors

DNS Insights on a Free Form Builder Service Phishing Campaign

More Signs of the more_eggs Backdoor Found in the DNS

Illuminating Lumma Stealer DNS Facts and Findings

View More