/ Recently Commented

IPv6 Answers to Common Questions from Policy Makers, Executives and Other Non-Technical Readers

Last Comment: Nov 16, 2009

A factual paper prepared in October 2009 for and endorsed by the Chief Executive Officers of ICANN and all the Regional Internet Registries that provides answers to commonly asked questions about IPv6 such as: How are allocations made, and to whom? How are IPv6 addresses actually being allocated? And why did such large IPv4 address allocations go to US organizations, including the US Government, and its Department of Defense? more

Shouldn’t Tea Time for Kenya Mean IDN Top-Level Domains?

Last Comment: Nov 16, 2009

Anyone who knows Kenya knows it is famous for tea. And while I can now get Kenyan tea online from US companies like Starbucks, Caribou Coffee or any number of other re-sellers, like most consumers I would vastly prefer to cut out the middle man and buy my tea direct from Kenyan companies. Why not? But here's the rub... more

China: Is It Our Cyber Defense Red Herring?

Last Comment: Nov 14, 2009

There are thousands of articles perpetuating the claim that China is out to get us on the Internet. And yet, all these discussions are begging the question, is it China attacking? Also, are they even the "usual suspects"?
While I can point to real facts of China making active use of information warfare, cyber warfare, or whatever else you choose to call it (such as the release of 0 days being patched by Microsoft and originally reported by the Taiwanese government, search Microsoft's site), I can also point to Germany (intelligence Trojan horse), the US (The Farewell Dossier) and other countries such as North Korea (without much detail, so questioned)... more

Email’s Not Dead, Neither is Spam

Last Comment: Nov 14, 2009

Over the past few years, we have seen a plethora of over-hyped articles in the popular press and blogosphere crowing wrong-headedly about how 'email is dead'. Social networks like Facebook and Twitter, new and as-yet unproven technologies are the supposed death-knell for our old reliable friend, e-mail. I wrote about the rumours of email's death being exaggerated back in 2007 in response to such inanity. Since then, we've seen such a cornucopia of silliness of the 'Such & such is killing email' variety that Mark Brownlow compiled a bunch of articles, and their rebuttals at his excellent site... more

How Do You Do Secure Bank Transactions on the Internet?

Last Comment: Nov 13, 2009

Banks love it when their customers do their transactions on line, since it is so much cheaper than when they use a bank-provided ATM, a phone call center, or, perish forbid, a live human teller. Customers like it too, since bank web sites are usually open 24/7, there's no line and no need to find a parking place. Unfortunately, crooks like on line banking too, since it offers the possibility of stealing lots of money. How can banks make their on line transactions more secure? more

The Tempest in the TLD Teapot

Last Comment: Nov 13, 2009

At its recent meeting in Seoul ICANN announced with great fanfare that it's getting ever closer to adding lots of new Top Level Domains (TLDs). Despite all the hype, new TLDs will make little difference... I agree with my old friend Lauren Weinstein that this is a tempest in a very expensive teapot, because all of the purported reasons that people want new TLDs have been proven false, and the one actual reason that a new TLD would be valuable has no public benefit. more

The Story of Conficker and the Industry Response

Last Comment: Nov 13, 2009

On November 2, 2009, Microsoft released its seventh edition of the Security and Intelligence Report (SIR). The SIR provides an in-depth perspective on the changing threat landscape including software vulnerability disclosures and exploits, malicious software (malware), and potentially unwanted software. Using data derived from hundreds of millions of Windows computers, and some of the busiest online services on the Internet, this report also provides a detailed analysis of the threat landscape and the changing face of threats and countermeasures and includes updated data on privacy and breach notifications. The following is an excerpt from the SIR, pp 29-32, about the Conficker worm and the industry response that showed an incredible amount of collaboration across vendors. more

Study on Improving Internet Usability: A Framework for Domain Name Policy Evaluation

Last Comment: Nov 13, 2009

A domain name is a unique alphanumeric designation that facilitates reference to sets of numbers which actually locate a particular computer on the Internet. Domain names are a fundamental part of the Internet's user interface. Improving the usability of the Internet depends upon effective domain name policy. This study is intended to contribute to improvement in Internet usability for the end users of domain names. Benefits of more usable domain names include: higher sales, customer satisfaction and productivity, and reduced support costs. more

Dot-Biz Saga

Last Comment: Nov 12, 2009

Two sides can oppose each other strenuously and still be wrong in exactly the same way. For or against, too much of the debate about the new ICANN top-level domains (TLDs) ignores TLD signaling and uses inappropriate TLD success measures. Here I spotlight the key mistakes by concentrating on ".biz" registrations, and I put forward some possible remedies. more

AT&T CTO Donovan: We Need Non-Discrimination

Last Comment: Nov 06, 2009

"Outside applications need to be on an equal footing with our own applications," John Donovan said at a SUPERCOMM keynote here in Chicago. "My jaw dropped," one of his colleagues told me a few minutes later, because this is a reversal of AT&T's long-standing position they needed to be able to favor their own applications. AT&T D.C. needs to listen closely to their own CTO, because they are throwing everything they have in D.C. at preventing "non-discrimination" being included in the FCC Net Neutrality regulations. more

The Role of a Cybersecurity Czar

Last Comment: Nov 05, 2009

For years now, there have been calls for a high-level cybersecurity official, preferably reporting directly to the president. This has never happened. Indeed, there is a lot of unhappiness in some circles that President Obama has not appointed anyone as "czar" (or czarina), despite the early fanfare about the 60-day cybersecurity review. There are many reasons why nothing has happened... more

A Case for Dot-Outlet TLD

Last Comment: Oct 30, 2009

This post outlines the correct use of an outlet strategy, points out the value of such a strategy, and the advantages of executing the strategy through a new ICANN top-level domain (TLD) instead of a second-level domain name. Some companies need to signal a brand name with low prices and quality/utility, whether the strategy is for a primary or secondary corporate brand. A successful strategy has to explicitly include lower price and quality. Otherwise, with only a lower price, a brand owner would cannibalize the main brand and cause damage to brand equity. more

Beyond Net Neutrality: A Manifesto for Internet Freedom

Last Comment: Oct 29, 2009

The Internet's existence within the regulatory system has been a disastrous failure. Network Neutrality is fine as far as it goes. The problem is that it leaves the current abysmal system in place. On my Economics and Architecture of IP Networks Mail list, Erik Cecil has been deconstructing the regulatory system. Bottom line -- the most significant thing that can be done for the citizens of the internet in the US would be for the FCC to declare the internet protocol to be telecommunications and no longer exempt from regulation. more

The New ICANN Emerges in Seoul

Last Comment: Oct 26, 2009

With the loud crashing of a traditional drum ceremony and an impromptu electric guitar performance by a young Korean whose rendition of Pachabel has been downloaded sixty million times on YouTube, the 36th meeting of ICANN was kicked off this morning (Korean time) by new CEO Rod Beckstrom and his fellow Directors and assembled one thousand or so participants. ICANN has always been about change, but the atmosphere in Seoul this week is charged with a sense of new challenges and new opportunities. more

Net Neutrality in the US Under Fire

Last Comment: Oct 24, 2009

John McCain has introduced a new legislation at the US Senate, which is called Internet Freedom Act... I agree with the statement about the governmental control and regulation -- we've done exactly this in Bulgaria, and the results are stunning (for the US user): today Bulgaria ranks No. 1 among the EU in number of users per capita who are connected to the Internet at speeds above 100 Mbps (in the US, the typical connection speed is 3 Mpbs), or 30 times faster than the US, and in many cases, people are connected via fiber, at 1000 Mbps, or 300 times faster. more

Industry Updates

Global DNS and Domain Activity Trends in Q2 2024

On the Hunt for Remnants of the Samourai Wallet Crypto Mixing Services in the DNS

A Peek at the V3B Phishing Kit Attack via the DNS Lens

NIS2 and Its Implications for Global Brands

  • By CSC
  • Jul 05, 2024

Tracking Down Fake Cryptocurrency Sellers Using DNS Intelligence

Following the DNS Trail of APT Group Newbie Unfading Sea Haze

On the DNS Trail of the Foxit PDF Bug Exploitation Attackers

Profiling a Popular DDoS Booter Service’s Ecosystem

IPv4.Global Commits to Keep Ukraine Connected

A DNS Investigation of the Phobos Ransomware 8Base Attack

Stately Taurus APT Group Targets Asian Countries: What Do the Campaign IoCs Reveal?

Managing Expanding Attack Surfaces for Growing Businesses

Subdomain Hijacking in the News Again - What is It?

  • By CSC
  • May 20, 2024

Looking for More Signs of Nitrogen in the DNS

Thoughts on RDRS for Brand Owners

  • By CSC
  • May 13, 2024
View More