Profiling a Massive Portfolio of Domains Involved in Ransomware Campaigns

Security researcher Dancho Danchev discovered a portfolio of domains and IP addresses used by known threat actors in ransomware campaigns. The said portfolio consists of 62,763 domain names and 810 IP addresses. We analyzed a sample of these malicious properties using TIP and found that: more

Verisign Domain Name Industry Brief: 350.4 Million Domain Name Registrations in Q4 2022

Today, Verisign released the latest issue of The Domain Name Industry Brief, which shows that the fourth quarter of 2022 closed with 350.4 million domain name registrations across all top-level domains (TLDs), an increase of 0.5 million domain name registrations, or 0.1%, compared to the third quarter of 2022. Domain name registrations have increased by 8.7 million, or 2.6%, year over year. more

Recommendations to Expedite the Next Round of Top-Level Domains

The launch of the 'next' round of new generic top-level domain (gTLDs) program has experienced significant delays since the 2012 round, resulting in frustration for prospective applicants and undermined trust in the multistakeholder governance model. more

The Fight Against Hive Ransomware May Not Be Done as Yet-Unidentified Artifacts Show

The Hive Ransomware Group has had more than 1,500 victims across more than 80 countries worldwide. They attacked hospitals, school districts, financial firms, and critical infrastructure until the U.S. Department of Justice (DOJ) disrupted their operations. Have we seen the fall of the group's entire infrastructure? more

Radix Reports Creators Ranging from Solo Entrepreneurs to Major Celebrities Adopting .Store for eCommerce

Radix, the operator of top-level domains .Store, .Online, .Tech, .Website, .Space, .Press, .Site, .Host, .Fun and .Uno, has earned a reputation as one of the most innovative and effective marketers in the domain industry. Today the company shared results from a 3-month creators.store campaign they launched in November that provided further proof of that. more

State of the IPv4 Marketplace During 2022: Complex & Unpredictable

Here are a few observations on the state of the IPv4 marketplace during 2022. All the statistics here exclude transfers of IPv4 addresses involved in mergers and acquisitions. more

Gauging How Big a Threat Gigabud RAT Is Through an IoC List Expansion Analysis

Targeting governments the world over in cyber attacks is not a novel concept. Doing that using mobile apps, however, is quite new as a tactic. And that's what Cyble researchers reported as Gigabud RAT's modus operandi - trailing its sights on citizens of Thailand, the Philippines, and Peru who use government-owned institutions' mobile apps. more

Workshop Report Published: State of the DNS in 2022

In November 2022, eco's topDNS Initiative invited about 30 experts, including representatives of three different Directorate Generals by the EU Commission, to a workshop in Brussels to work together on a secure future for the DNS (Domain Name System). The topDNS Initiative has now published its 28-page final report. more

Catching Batloader Disguised as Legit Tools through Threat Vector Identification

Putting on a mask on malware has always worked to trick users into downloading them, and the threat actors behind Batloader banked on just that. Trend Micro researchers tracked and analyzed Batloader-related developments toward the end of 2022. more

Tracing Connections to Rogue Software Spread through Google Search Ads

Taking control of victims' accounts is typically the end goal of many cybercriminals, and they never cease to come up with wily ways to do so. Bleeping Computer researchers recently spotted hackers spreading malware mayhem through Google search ads supposedly pointing to open-source software download sites. more