Threat Intelligence

 Sponsored
by

Noteworthy

Domain Research and Monitoring: Keeping an Eye on the Web for You

WhoisXML API
A Domain Research, Whois, DNS, and Threat Intelligence API and Data Provider May 24, 2019 |   Read More |   10,409

Reverse WHOIS: A Powerful Process in Cybersecurity

WhoisXML API
A Domain Research, Whois, DNS, and Threat Intelligence API and Data Provider Jun 14, 2019 |   Read More |   11,236

WHOIS History API: Powering Domain Investigations

WhoisXML API
A Domain Research, Whois, DNS, and Threat Intelligence API and Data Provider May 22, 2019 |   Read More |   10,039

Threat Intelligence / Featured Blogs

98% Of Internet’s Main Root Server Queries Are Unnecccary: Should You Be Concerned?

Feb 26, 2003

A recent study by researchers at the Cooperative Association for Internet Data Analysis (CAIDA) at the San Diego Super Computer Center (SDSC) revealed that a staggering 98% of the global Internet queries to one of the main root servers, at the heart of the Internet, were unnecessary. This analysis was conducted on data collected October 4, 2002 from the 'F' root server located in Palo Alto, California.

The findings of the study were originally presented to the North American Network Operators' Group (NANOG) on October 2002 and later discussed with Richard A. Clarke, chairman of the President's Critical Infrastructure Protection Board and Special Advisor to the U.S. President for Cyber Space Security. more

Preventing Future Attacks: Alternatives In DNS Security Management - Part II

Nov 20, 2002

In Part I of this article I set the stage for our discussion and overviewed the October 21st DDoS attacks on the Internet's 13 root name servers. In particular, I highlighted that the attacks were different this time, both in size and scope, because the root servers were attacked at the same time. I also highlighted some of the problems associated with the Domain Name System and the vulnerabilities inherent in BIND. Part II of this article takes our discussion to another level by critically looking at alternatives and best practices that can help solve the security problems we've raised. more

Preventing Future Attacks: Alternatives In DNS Security Management - Part I

Nov 06, 2002

The October 21 DDoS attacks against the 13 root-name servers containing the master domain list for the Internet's Domain Name System (DNS), (which reportedly took offline 9 of the 13 servers) remain a clear and daunting reminder of the vulnerabilities associated with online security. Many DNS authorities have named the most recent hit the largest DDoS attack against the root server system. Chris Morrow, network security engineer for UUNET, the service provider for two of the world's 13 root servers, recently told The Washington Post... more

Have You Monitored Your DNS Performance Lately?

Sep 13, 2002

Domain Name System (DNS) surveys such as that recently conducted by Men & Mice continually demonstrate that the DNS is riddled with errors. Since the DNS continues to work, this raises three questions:

1. Does it matter that the DNS is riddled with errors?
2. Why is it riddled with errors?
3. How can it be fixed? more

Industry Updates

Thawing IcedID Out Through a DNS Analysis

Examining WoofLocker Under the DNS Lens

Decoy Dog, Too Sly to Leave DNS Traces?

RedHotel Attack Infrastructure: A DNS Deep Dive

Finding WyrmSpy and DragonEgg Ties to APT41 in the DNS

DNS Insights behind the JumpCloud Supply Chain Attack

Signs of MuddyWater Developments Found in the DNS

AI Tool Popularity: An Opportunity for Launching Malicious Campaigns?

DNS Revelations on Eevilcorp

WhiteSnake Stealer Serpentines through the DNS

A DNS Deep Dive Into Malware Crypting

BlackCat Hacks Reddit Again, Take a Look at What the DNS Revealed

MOVEit Bug-CLOP Ransomware Threat Vector Identification Aided by DNS Intelligence

Tracing Truebot’s Roots through a DNS Deep Dive

Alleviating the Risks .zip and Similar Domain Extensions Could Pose via DNS Intelligence

View More