Category Archives: Domain Name Server (DNS)

DNSChanger and the Global Scope of Cybersecurity

Posted on by

In November 2011, the FBI-led Operation Ghost Click raided malicious servers run by the Rove Digital cyber group. This was only after the group had leveraged the DNSChanger Trojan to infect over four million computers and generate over $14 million in illicit profits. At the time, the operation was billed as the biggest cyber criminal […]

The post DNSChanger and the Global Scope of Cybersecurity appeared first on Security Intelligence.

Continue reading DNSChanger and the Global Scope of Cybersecurity

20 Years Ago in Cybersecurity: Massive DDoS Attack Hits the Roots of the Internet

Posted on by

It was considered the “largest ever” internet attack in 2002. This distributed denial of service attack hit seven of the 13 servers at the top of the internet’s domain name system hierarchy. Now, 20 years later, its origins remain mysterious, but its methods and size still make it stand out. It isn’t the largest by […]

The post 20 Years Ago in Cybersecurity: Massive DDoS Attack Hits the Roots of the Internet appeared first on Security Intelligence.

Continue reading 20 Years Ago in Cybersecurity: Massive DDoS Attack Hits the Roots of the Internet

NFT Security Risks: Old Scams and New Tricks

Posted on by

The non-fungible token (NFT) boom has also led to some serious security incidents. For example, the number of suspicious-looking domain registrations with names of NFT stores increased nearly 300% in March 2021.   To participate in an NFT marketplace, you must have an active cryptocurrency wallet. This exposes NFT holders to new risks as attackers can […]

The post NFT Security Risks: Old Scams and New Tricks appeared first on Security Intelligence.

Continue reading NFT Security Risks: Old Scams and New Tricks

Facebook blames networking issues, not a cyberattack, for long downtime

Posted on by

Facebook, Instagram and WhatsApp largely returned to the internet late Monday following a six hour-long outage that outsiders suggested, without evidence, was the result of a cyberattack. In an Oct. 4 statement, the company apologized for the long downtime, blaming the matter on networking issues. Configuration changes “on the backbone routers that coordinate network traffic between our data centers” interrupted communication, Facebook said, causing a “cascading effect” that disrupted the flow of communication. The same issue also halted Facebook’s internal systems, further delaying the recovery process. Independent security experts suggested from the beginning that the company’s Domain Name System, the technological protocol by which connected devices locate one another on the internet, was somehow to blame. “We want to make clear at this time we believe the root cause of this outage was a faulty configuration change,” Santosh Janarhan, vice president of Facebook Infrastructure, said in a statement. “We also […]

The post Facebook blames networking issues, not a cyberattack, for long downtime appeared first on CyberScoop.

Continue reading Facebook blames networking issues, not a cyberattack, for long downtime

How to Use Passive DNS to Inform Your Incident Response

Posted on by

Passive DNS replication can be an essential source of data to contextualize your threat intelligence and inform your incident response plan.

The post How to Use Passive DNS to Inform Your Incident Response appeared first on Security Intelligence.

Continue reading How to Use Passive DNS to Inform Your Incident Response