Cybercrime

Sponsored
by

Noteworthy

Domain Research and Monitoring: Keeping an Eye on the Web for You

WHOIS History API: Powering Domain Investigations

Reverse WHOIS: A Powerful Process in Cybersecurity

Cybercrime / Most Commented

VeriSign Expands DNS Capacity From 400 Billion to Over 4 trillion Queries Per Day

Since 2000, the volume of Internet traffic on VeriSign's global infrastructure has increased from an average of 1 billion domain name system queries per day to a peak of more than 50 billion DNS queries per day under normal traffic conditions, reports VeriSign in a press release today. Under Project Titan, VeriSign reports it will increase its daily DNS query capacity from 400 billion queries a day to over 4 trillion queries a day and will increase the aggregate network bandwidth of its primary resolution centers around the world from more than 20 gigabits per second (Gbps) to greater than 200 Gbps per second. VeriSign also plans to expand its deployment of Regional Internet Resolution Sites to more than 100 locations across the globe by 2010. Plans also include deploying new proprietary security upgrades and monitoring tools to identify, track and isolate malicious Internet traffic generated from cyber attacks. more

France Preparing for Future Cyberwars, Says President

French President Nicolas Sarkozy announced major military reforms involving an in-depth change in strategic priorities and is gradually preparing France for the fights of future. Plans include expanding the range of weapons arsenal in terms of computer warfare, said the president in his announcement this week. France is not alone to be deeply worried about the issue of crippling cyber attacks. In mid-May, the Atlantic Alliance, which brings together dozens of Northern America, Western and Eastern European countries, launched what has come to be known as the "NATO Excellence Center for Cybernetics Defense" in Tallinn, Estonia. more

Popular Photo Sharing Site's DNS Records Hijacked by Turkish Hacking Group

DNS records of one of the most popular photo sharing websites, Photobucket, were hacked yesterday by Turkish Hacking Group. The site returned a hacked page courtesy of the NetDevilz hacking group, a Turkish web site defacement group most widely known for its defacement of the adult video site Redtube earlier this year. Photobucket users across the world are reporting minor outages of the service and problems when trying to access their accounts, the consequence of what looks like the type of DNS records hijacking that redirected Comcast.net to a third-party domain last month. more

FTC Halts Cross Border Domain Name Con Artists

A U.S. District Court Judge has ordered a halt to the illegal practices of Canadian operators who deceptively posed as domain name registrars and sent bogus bills to thousands of U.S. small businesses and nonprofit organizations for their annual "WEBSITE ADDRESS LISTING." Many of the businesses and nonprofits believed they would lose their domain names unless they paid the bill, so they paid. The Federal Trade Commission alleged that in most cases the defendants did not provide domain registration services, did not provide the "search optimization" services it claimed to provide, and bilked small businesses and nonprofits out of millions of dollars. more

British Hacker Accused of Biggest Military Hack Fights Extradition to U.S.

Five judges at the UK's highest court are currently in process of evaluating a final appeal against extradition by a computer enthusiast wanted in Washington for the "biggest military hack of all time". Gary McKinnon (nicknamed "Solo"), 44, is accused of causing hundreds of thousands of dollars of damage after breaking into dozens of computers owned by NASA, the Pentagon and the U.S. military. His last appeal to the High Court in London failed after two senior judges ruled he should face trial in the United States. The law lords are expected to give their ruling before the end of July. more

Experts Concerned Over U.S. Spyware Legislation Being Overly Broad

U.S. Senate bill aims at limiting spyware by seemingly allowing broadband providers, computer hardware and software vendors, financial institutions and other businesses to scan users' computers without authorization. "We think this language is overly broad and could protect activities which could be harmful to computer users," Butler told the Senate Commerce, Science and Transportation Committee. "It would, in effect, allow a software vendor to truly monitor everything that's on a user's computer, essentially setting [vendors] up as an ad hoc police force." more

Carpet Bombing in Cyber Space - Say Again?

I was pointed to an article in the Armed Forces Journal where Col Charles W. Williamson III argues that the US Air Force needs to develop a BOTnet army as part of the US military capability for retaliatory strikes. The article brings up some interesting issues, the one that I believe carries the most weight is the argument that we (well, people living on the Internet) are seeing an arms race. It is true that more and more nations are looking into or developing various forms of offensive weapons systems for the use on the Internet... more

Software Security Hole Exposes Critical Utilities to Internet attack

Internet attackers could gain control of water treatment plants, natural gas pipelines and other critical utilities because of a vulnerability in the software that runs some of those facilities, security researchers reported Wednesday. Experts with Boston-based Core Security Technologies, who discovered the deficiency, said there's no evidence anyone else found or exploited the flaw. Citect Pty. Ltd., which makes the program called CitectSCADA, patched the hole last week, five months after Core Security first notified Citect of the problem. more

CADNA Held London Online Brand Abuses and Internet Governance Education Forum

The Coalition Against Domain Name Abuse (CADNA) recently held its London Online Brand Abuses and Internet Governance Education Forum. The forum included companies from the US, UK, Belgium, Netherlands and Switzerland, with half of the attendees representing Global 500 companies. Forum attendees expressed concerns over issues such as online brand dilution and the often-ineffective governance of ICANN. more

An Account of the Estonian Internet War

About a year ago after coming back from Estonia, I promised I'd send in an account of the Estonian "war". A few months ago I wrote an article for the Georgetown Journal of International Affairs, covering the story of what happened there. This is the "war" that made politicians aware of cyber security and entire countries scared, NATO to "respond" and the US to send in "help". It deserved a better understanding for that alone, whatever actually happened there. more

DNS Troubles at the U.S. National Security Agency

DNS server problems at the U.S. National Security Agency have knocked the secretive intelligence agency site offline for several hours. Reports suggest various possible reasons including an internal routing problem of some sort on their side or errors in firewall or ACL [access control list] policy. Other possibilities are speculated to be a technical glitch or a hacking incident. The NSA is responsible for analysis of foreign communications, but it is also charged with helping protect the U.S. government against cyber attacks -- the outage is an embarrassment for the agency. more

Wow, Sanford Wallace Owes a Lot of Money

Last September MySpace sued ur-spammers Sanford "Spamford" Wallace and Walt "Pickle Jar" Rines were for egregious violations of CAN SPAM. Neither responded, so as was widely reported, earlier this week the court granted a default judgement. Since they sent a lot of spam, the statutory damages came to an enormous $235 million. Even for Spamford, that's a lot of money. more

Spammers Handed Record $230 Million Anti-Spam Judgment

A federal judge in Los Angeles has awarded MySpace close to $230 million in its lawsuit against "Spam King" Sanford Wallace and his business partner Walter Rines. Judge Audrey B. Collins of United States District Court in the Central District of California ruled in MySpace's favor on Monday after the two men failed to show up in court, according to MySpace... While many spammers have been designated "Spam King," Wallace earned the title back in the late 1990s as a result of spam messages sent by his company Cyber Promotions. more

CEO's Advised to Wake Up to Cyberthreats

Paul Twomey, chief executive of ICANN and member of the British-North American Committee, advises chief executives of the risks to business from cyber-espionage and how to deal with them... "There are reports of cyber-espionage against the US defense industry and the UK by China," said Twomey on Wednesday. more

NATO Nations Sign Agreement on Cyber Defense Center

Seven NATO nations gave their backing on Wednesday to a new cyber defense centre in Estonia, the ex-Soviet state which last year faced weeks of attacks on its Internet structure after a row with Russia. Germany, Italy, Latvia, Lithuania, Slovakia and Spain agreed to help fund and staff the centre in the Estonian capital Tallinn. The United States will initially send an observer to the project, aimed at boosting defenses against such attacks. more

Industry Updates

How to Avoid Phishing Campaigns Targeting CARES Act Recipients

Newly Registered Domains Database Shows Threat Actors Exploit the Need for N95 Masks amid the Pandem

Domain and IP Intelligence Checks Following the Launch of the COVID-19 Solidarity Response Fund

Under the Hood of 3M- and 3M Mask-Themed Recently Registered Domains

Domain Intelligence Shows Cybercriminals May Abuse Video-Conferencing Services' Brand Names

How Cyber Threat Intelligence Feeds Can Support MSSPs

Brand Monitor and Typosquatting Data Feed: Two Assets to Support Spear-Phishing Prevention

Combating COVID-19 Cybercrime – What Internet Infrastructure Providers Like Afilias Are Doing

What Cyber Threat Intelligence Tools Can Reveal about a Targeted Attack

Looking Into a Possible Coronavirus-Themed Survey Scam Turning Out to Be a False Positive

Coronavirus: Cybersecurity Implications and Fraudulent Infection Maps

Threat Intelligence: The First Line of Defense Against Data-Stealing Ransomware

MarkMonitor Releases New gTLD Quarterly Report for Q1 2020

The Internet Infrastructure Industry Is Protecting Digital Trust and Fighting COVID-19 Related Fraud

3 Ways a DNS Lookup Tool Can Help Prevent DNS Attacks