/ Most Viewed

Passwords Are Not Enough: Without Two Factor Authentication Your Business Is At Risk

Jul 11, 2013

Passwords are no longer sufficient to maintain an adequate level of security for business critical infrastructure and services. Two-factor authentication should be considered the minimum acceptable level of access control. There have been two types of security stories in the technology news over the last few months that should be of particular concern to system administrators and those responsible for maintaining business network infrastructure. more

Changes to the Domain Name Marketplace

Mar 12, 2018

The new gTLD program and the introduction of 1200+ new domain name registries has significantly altered the marketplace dynamics. New domain name registries must navigate an environment that is, to an extent, stacked against them. This article recommends creation of some improvements and a general de-regulation of the marketplace to encourage innovation and promote its overall health. ICANN, or a combination of Registry Operators, should fund a brief, thorough study of the current marketplace because of the changes that have occurred from the original marketplace for which current regulations were developed. more

A Survey of DNS Security: Most Vulnerable and Valuable Assets

May 22, 2006

The following provides and introduction to a study by Venugopalan Ramasubramanian and Emin Gun Sirer, called "Perils of Transitive Trust in the Domain Name System". The paper presents results from a large scale survey of DNS, illustrating how complex and subtle dependencies between names and nameservers lead to a highly insecure naming system... "It is well-known that nameservers in the Domain Name System are vulnerable to a wide range of attacks. We recently performed a large scale survey to answer some basic questions about the legacy DNS." more

Will Uniform Rapid Suspension Be a Substitute for Defensive Domain Name Registrations?

Oct 17, 2013

Many law firms and Intellectual Property departments in charge of managing brands and domain names for their customers or businesses must have had that same question: "how do I protect a brand online under the ICANN new gTLD program?" The first potential answer that is usually offered up to an enquirer is: "the Trademark Clearinghouse does that". As time goes by, and the rules under which the Trademark Clearinghouse operates are better defined and understood this answer becomes clearly fallacious. more

WannaCry: Patching Dilemma from the Other Side

May 16, 2017

WannaCry, originated firstly in state projects but spread by other actors, has touched upon myriads of infrastructure such as hospitals, telecommunication, railroads that many countries have labelled as critical. IT engineers are hastily presenting patching codes in various localized versions. The other patch needed, however, is more than technical. It is normative and legislative. The coding of that patch for a situation like this is in two layers of dilemma. more

Is Bandwidth Infinite? It All Depends…

Sep 11, 2007

On August 23 ( while I was in China) a list member Lee S. Drybrugh wrote in jest: I happened to bump into Peter Cochrane stating, "The good news is -- bandwidth is free -- and we have an infinite supply." Next by sheer accident I bumped into this in relation to Gilder, "Telecosm argues that the world is beginning to realise that bandwidth is not a scarce resource (as was once thought) but is in factinfinite." Can anyone explain this infinite bandwidth as I think I am getting ripped off by my ISP if this is true? Craig Partridge then offered what I think is a very good commentary of a difficult question where the answer depends very much on context... more

IT Risks for Cloud Computing

Aug 25, 2010

As the industry-wide paradigm shift to cloud computing and software-as-a-service gradually continues to make the transition from buzz to reality, security and availability continue to emerge as the main barriers to customer adoption. A recent ISACA survey of over 1,800 US IT professionals found that only 17 percent believe the benefits of cloud computing outweigh the risks. Only one in 10 respondents said they would consider using software-as-a-service (SaaS) for mission-critical applications. more

Is WLS the Right Mechanism to Protect Consumers?

Jul 21, 2003

The claim that the *only* way that reliable wait listing can be done by *the* registry is not true. The registrars could, as a technical matter, if they chose to do so, "wrap" the registry with a new entity that mediates all acquisitions and releases. Whether this accords with ICANN's hyper intricate contractual scheme or with laws against restraint of trade, I don't know.

Personally I consider WLS to be contrary to the idea that a contract contains an implied covenant of good faith and fair dealing - it seems to me that WLS violates that implied covenant - It is as if my doctor is selling contracts on parts of my body should I die while under his care. more

WHOIS Record Redaction and GDPR: What’s the Evolution Post-2018?

Jan 19, 2021

We all use the Internet daily. Practically every element of our reality has its equal in the virtual realm. Friends turn into social media contacts, retail establishments to e-commerce shops, and so on. We can't deny that the way the Internet was designed, to what it has become, differs much. One example that we'll tackle in this post is the seeming loss of connection between domains and their distinguishable owners. more

ANA Says ICANN Needs to Conduct Thorough Review of Conflict of Interest Policies

Oct 03, 2011

In a letter submitted to ICANN today, the ANA (Association of National Advertisers) has asked the organization to conduct a thorough and proactive review of the new generic Top-Level Domain (gTLD) program. ANA has additionally asked for a broader review of conflicts of interest and ethics policies for the organization "so that ICANN can reclaim its legitimacy as an Internet governance body." more

ICANN GNSO Votes to Kill Domain Tasting

Apr 21, 2008

The ICANN Generic Names Supporting Organization has had tasting on its agenda since last fall, with a staff report issued in January, and a proposed anti-tasting policy written in March. On Thursday the 17th, the GNSO put the proposed policy to a vote, and it passed overwhelmingly. Under ICANN rules, the ICANN board has to take up the resolution at its next meeting, and since it was approved by a supermajority, it becomes ICANN policy unless 2/3 of the board votes against it, which in this case is unlikely. more

Future of Cloud Computing and Why It’s Here to Stay

Mar 13, 2014

Nowadays, everybody is talking about cloud computing. Fans say it's the future, the answer to every problem with computing as we know it; others say it's just a fad and will eventually die. Who's right? While nobody knows the future, the fact is, enough evidence is available that we can all reasonably predict what's coming. Consider these facts... more

.Canon, .Nikon and the Other Twenty Plus Photography-Related TLDs

May 18, 2016

A few days ago, Canon announced its move to a new domain name using its ".canon" extension, but did you know that there is a .NIKON new gTLD too? While the photography industry strengthens its presence online with these two major trademarks launching their dedicated top-level domains, there are a lot more generic extensions in the world of photography. more

I Got Fired

Feb 22, 2016

It's a story told a thousand times: founder of a company ousted by investors. It's a story so common you can find it any day of the week as a minor headline in a tech blog. Not much of a story at all really, until it happened to me. Minds + Machines, the company I founded in 2009, informed me last week that I was no longer wanted as CEO. Without going into details, which I can't, there were differences and disagreements. Still, it was a surprise. All the plans, the hopes -- pfhhht! into thin air. It sucked. Now what? more

Next gTLD Round - A Seven Year Itch?

Feb 08, 2017

Five years ago today, the ICANN Board committed to opening a second application window for the New gTLD Program as expeditiously as possible. The same resolution also directed the ICANN CEO to publish a document describing the work plan required prior to initiating a second application window. Ask a Board member or ICANN staff when they expect the next application window to open, and they will inevitably suggest 2020 -- another three years away. more

Industry Updates

Global DNS and Domain Activity Trends in Q2 2024

On the Hunt for Remnants of the Samourai Wallet Crypto Mixing Services in the DNS

A Peek at the V3B Phishing Kit Attack via the DNS Lens

NIS2 and Its Implications for Global Brands

  • By CSC
  • Jul 05, 2024

Tracking Down Fake Cryptocurrency Sellers Using DNS Intelligence

Following the DNS Trail of APT Group Newbie Unfading Sea Haze

On the DNS Trail of the Foxit PDF Bug Exploitation Attackers

Profiling a Popular DDoS Booter Service’s Ecosystem

IPv4.Global Commits to Keep Ukraine Connected

A DNS Investigation of the Phobos Ransomware 8Base Attack

Stately Taurus APT Group Targets Asian Countries: What Do the Campaign IoCs Reveal?

Managing Expanding Attack Surfaces for Growing Businesses

Subdomain Hijacking in the News Again - What is It?

  • By CSC
  • May 20, 2024

Looking for More Signs of Nitrogen in the DNS

Thoughts on RDRS for Brand Owners

  • By CSC
  • May 13, 2024
View More