/ Recently Commented

Study Assesses Potential Impact of DNSSEC on Broadband Consumers, Results Not Good

Last Comment: Sep 17, 2008

Recent collaborative test by Core Competence and Nominet have concluded that 75% of common residential and small SOHO routers and firewall devices used with broadband services do not operate with full DNSSEC compatibility "out of the box". The report presents and analyzes technical findings, their potential impact on DNSSEC use by broadband consumers, and implications for router/firewall manufacturers. Included in its recommendations, the report suggests that as vendors apply DNSSEC and other DNS security fixes to devices, consumers should be encouraged to upgrade to the latest firmware. more

Virginia Court Throws Out Spam Law; One Spammer Gets Away With It

Last Comment: Sep 17, 2008

The 2004 criminal spam case against large-scale spammer Jeremy Jaynes, which I've covered in several previous blog entries, appears to have come to an ignominious end with the state supreme court throwing out the law under which he was convicted. The Virginia anti-spam law was one of the first in the country with criminal provisions, but it failed due to the way that First Amendment cases are treated differently from all other cases. more

Cloud Computing and Privacy

Last Comment: Sep 17, 2008

There has been a good deal of talk of late on the important topic of security and privacy in relation to cloud computing. Indeed there are some legitimate concerns and some work that needs to be done in this area in general, but I'm going to focus today on the latter term (indeed they are distinct -- as a CISSP security is my forte but I will talk more on this separately). more

Spam Fighters: Revenge is a Dish Best Left in the Freezer and Forgotten

Last Comment: Sep 15, 2008

There's no denying that the fight against spam attracts a lot of crazies, both pro- and anti-spam. One of the common attributes of the anti-spam kooks is that they often think in terms of somehow taking revenge against the spammers -- regardless of who else gets hurt along the way. In 2005, that revenge came in the form of BlueFrog, a service which purported to launch what can only be called denial of service attacks against spammers' web sites... This week, a company called SpamZa was hurriedly making a similar mistake... more

Berners-Lee Announces Creation of World Wide Web Foundation

Last Comment: Sep 15, 2008

Sir Tim Berners-Lee, inventor of the World Wide Web, on Sunday announced the launch of World Wide Web Foundation to fulfill a vision of the Web as humanity connected by technology. "The Web is a tremendous platform for innovation, but we face a number of challenges to making it more useful, in particular to people in underserved communities," said Sir Tim Berners-Lee, Director of the World Wide Web Consortium (W3C), and co-Director of the Web Science Research Initiative (WSRI). "Through this new initiative, we hope to develop an international ecosystem that will help shape the future Web. A more inclusive Web will benefit us all." more

Satellite Internet Access That Could Be Good

Last Comment: Sep 10, 2008

According to The Wall Street Journal, a company called O3b Networks LTD Traditional is planning to launch up to 16 satellites by the end of 2010 to provide Internet access in Africa, the Middle East, and parts of Latin America. This satellite plan, unlike many others, could be good. These are low earth orbit satellites or LEOs so they will be able to avoid the latency problems which are unavoidable with the geostationary satellites used by companies like WildBlue and Hughes to provide "last resort" Internet access in the US. more

Soon in a Mail Box Near You: Internationalized Email Addresses

Last Comment: Sep 09, 2008

The EAI working group of the IETF has finished (part of) its work on the interationalization of email addresses. This, together with Internationalized Domain Names (IDN) will make it possible to send email messages to non-7 bit ASCII addresses... There are 3 RFCs, covering changes to the SMTP protocol, e-mail message format and delivery Status Notifications. more

Cyber Crime: An Economic Problem

Last Comment: Sep 07, 2008

During ISOI 4 (hosted by Yahoo! in Sunnyvale, California) whenever someone made mention of RBN (the notoriously malicious and illegal bulletproof hosting operation, the Russian Business Network) folks would immediately point out that an operation just as bad was just "next door" (40 miles down the road?), working undisturbed for years. They spoke of Atrivo (also known as Intercage). The American RBN, if you like... more

Domain Name Lessons from Napster

Last Comment: Sep 05, 2008

I first outline a brief history of free file-sharing technology, then draw some general and domain name lessons, then outline the what, how, and why that make your activism effective and necessary... The domain name industry is decentralized and atomic in that anyone from anywhere in the world can register a domain name, keep the ownershp name and address private, and host it from a country where the U.S. and European legal systems don't apply. Thus, legal action will only drive domain owners further underground. more

Do “brandsucks.com” Names Really Have a “Destructive Potential”?

Last Comment: Sep 02, 2008

"'Sucks.com is the rightmost anchor of nearly 20,000 domains registered today. Two thousand domains have 'stinks.com' on the right and about the same number of domains begin with the term 'boycott'," write the authors of the recently released paper The Power of Internet Gripe Sites. According to their (interesting) study, 35% of the "brandsucks" domains are owned by the brand while 45% are available for registration. They thus advise brand owners "to take a serious look at the traffic that these names garner and the kind of unique marketing opportunity they can afford." ...I do not fully agree with their conclusions... more

Will .cn Become the New .com?

Last Comment: Aug 29, 2008

I recently came across a chart of the most popular top-level domains (TLDs), compiled by Stephane Van Gelder. Although I keep track of country code TLD registrations for the Country Codes of the World map (see also related CircleID post), Stephane tracks all domains, including .com, .net., etc. And when I saw it I got to thinking... more

Thoughts on the Best Western Compromise

Last Comment: Aug 27, 2008

The Sunday Herald reported on Sunday that Best Western was struck by a trojan attack that lead to the possible compromise of about 8 million victims. There is some debate as to the extent of the breach and not a small amount of rumor going around. I'm not entirely disposed to trust corporate press releases for the facts, nor am I going to blindly accept claims of security researchers whose first call is to the PR team when discovering a problem. That said, here is what seems to be the agreed upon facts... more

New gTLDs: Comments on the Unsigned “The Economic Case for Auctions”

Last Comment: Aug 25, 2008

When Kurt Pritz briefed the Generic Names Supporting Organization (GNSO) Council (and observers) in Los Angeles April 10th and 11th, the new generic Top-Level Domain (gTLD) process model flows transition through an "auction" state in two of the three paths where two or more applications existed for the same (or similar) strings. At that time Kurt, speaking for Staff, was clear that the existence of a well-defined community was not dispositive, which surprised the Council members from the Intellectual Property Constituency... more

Lies, Damn Lies, and Anti-Spam Vendor Press Releases

Last Comment: Aug 22, 2008

There's a lot of chatter about a recent study purporting to show that 29.1% of internet users has bought something from spam. As ITWire reported, "Marshal were not only interested in how many people were purchasing from a spam source, but also what goods and services they were buying. Perhaps less surprisingly this revealed that sex and drugs sell well online." But at downloadsquad, Lee Mathews discovered the shocking truth: "the survey only involved 600 people." more

WiMAX Will Be Successful, as a Fringe Technology

Last Comment: Aug 21, 2008

A recent Infonetics press release says "WiMAX has gained such momentum across so many regions that it is no longer sensible to suggest that WiMAX growth will be flattened by the emergence of LTE [Long Term Evolution] in the next few years." Probably true, but it's also clear WiMAX will never reach the scale of either mainstream wireless family, i.e., WiFi or GSM/3GSM. By comparison with these giants, WiMAX will be a fringe operation. The critical issue is volume, and what counts is the wireless technology brand, not the technology itself. more

Industry Updates

Global DNS and Domain Activity Trends in Q2 2024

On the Hunt for Remnants of the Samourai Wallet Crypto Mixing Services in the DNS

A Peek at the V3B Phishing Kit Attack via the DNS Lens

NIS2 and Its Implications for Global Brands

  • By CSC
  • Jul 05, 2024

Tracking Down Fake Cryptocurrency Sellers Using DNS Intelligence

Following the DNS Trail of APT Group Newbie Unfading Sea Haze

On the DNS Trail of the Foxit PDF Bug Exploitation Attackers

Profiling a Popular DDoS Booter Service’s Ecosystem

IPv4.Global Commits to Keep Ukraine Connected

A DNS Investigation of the Phobos Ransomware 8Base Attack

Stately Taurus APT Group Targets Asian Countries: What Do the Campaign IoCs Reveal?

Managing Expanding Attack Surfaces for Growing Businesses

Subdomain Hijacking in the News Again - What is It?

  • By CSC
  • May 20, 2024

Looking for More Signs of Nitrogen in the DNS

Thoughts on RDRS for Brand Owners

  • By CSC
  • May 13, 2024
View More