A threat campaign known as Beamglea exploited npm packages to target over 135 companies globally. Researchers uncovered 175 malicious packages, 344 related domains, and dozens of IP-linked artifacts through DNS and WHOIS analysis.
A coordinated crackdown on RaccoonO365 reveals the scale of phishing-as-a-service operations, as domain and DNS data expose hundreds of linked artifacts and offer a window into the infrastructure of low-skill cybercrime.
Cybercriminals are swapping standard image formats for SVG files to smuggle malware into systems. A detailed investigation uncovered a sprawling network of suspicious domains, IP addresses, and email-linked infrastructure used for espionage and cryptojacking.
The 2025 .US Virtual Town Hall opens registration for a timely dialogue on domain policy, security, and digital inclusion. Experts and community members will explore how America's online identity is evolving in a shifting landscape.
WhoisXML API's Q3 2025 analysis found global new domain registrations dipped 1.2% from Q2, with gTLDs rising and ccTLDs falling sharply. The .cc ccTLD remained an anomaly, and .com led malicious domain activity.
The Domain Name Industry Brief reports 378.5 million total domain name registrations in Q3 2025, marking a 16.2 million increase year over year and offering detailed insights into top TLD, ccTLD, and gTLD trends.
IPv4 address prices continued to decline through Q3 2025, yet steady demand and strong supply are keeping the market active. Smaller blocks remain more resilient as larger allocations face sharper pricing pressure.
A Chinese-language SEO poisoning campaign has been uncovered, leading users to fake software sites. Investigators linked the scheme to malware variants and uncovered thousands of malicious domains, subdomains, and IP addresses through DNS and WHOIS analysis.
DNS Security Extensions (DNSSEC) offer cryptographic safeguards to validate DNS responses, countering spoofing and cache poisoning. While implementation is complex, best practices and third-party services help firms navigate the operational demands of deployment.
WhoisXML API has halved the false positive rate of its malicious domain feed, enhancing detection precision. The update refines machine learning models, promising leaner cybersecurity operations and fewer interruptions from erroneous threat alerts.