Security

Topic Feed

Blogs

Perspectives on a DNS-CERT

Mar 16, 2010 12:03 PM PDT

Last week at the ICANN meeting in Nairobi, a plan was announced by ICANN staff to create a "CERT" for DNS. That's a Community Emergency Response Team (CERT) for the global Domain Name System (DNS). There are all kinds of CERTs in the world today, both inside and outside the Internet industry. There isn't one for DNS, and that's basically my fault, and so I have been following the developments in Nairobi this week very closely. more»

Another One (Partially) Bites the Dust

Mar 12, 2010 12:03 PM PDT

Following in the footsteps of Lethic, Waledac and Mariposa, yet another botnet has been taken offline. Not completely, though, it was only a partial disconnect. The Zeus botnet, also known as Zbot, is a trojan password stealer that captures passwords and sends them to the attacker. more»

Authorities Take Down the Mariposa Botnet

Mar 05, 2010 11:47 AM PDT

There are a number of sources talking about the takedown of the Mariposa botnet... Spanish authorities, working with researchers from Panda Labs, Defence Intelligence and a couple of other educational institutions, took down the Mariposa botnet (Mariposa is the Spanish word for "butterfly"). The Mariposa botnet is an absolutely enormous with around 12 million (!) nodes doing its bidding. It was involved in things like credit card phishing and identity fraud. more»

Closing in on the Google Hackers

Feb 25, 2010 9:04 PM PDT

Joseph Menn has an article on CNN.com wherein the crux of the story is that US experts are closing in on the hackers that broke into Google last month. It is believed by some that the Chinese government sponsored these hackers. China, naturally, denied involvement. My own take is that tools today are sophisticated enough such that you don't necessarily need state sponsorship in order to launch a cyber attack. more»

OpenDNS Adopts Proposed DNS Security Solution: DNSCurve

Feb 23, 2010 1:59 PM PDT

For more than 15 years, the IETF has been working on DNSSEC, a set of extensions to apply digital signatures to DNS. Millions of dollars in government grants and several reboots from scratch later, DNSSEC is just starting to see real world testing. And that testing is minimal -- only about 400 of the more than 85,000,000 .com domains support DNSSEC, fewer than 20% of US government agencies met their mandated December 31, 2009 deadline for DNSSEC deployment, and only two of the thirteen root zone name servers is testing with even dummy DNSSEC data. more»

Chuck Norris Botnet and Broadband Routers

Feb 22, 2010 10:40 AM PDT

Last week Czech researchers released information on a new worm which exploits CPE devices (broadband routers) by means such as default passwords, constructing a large DDoS botnet. Today this story hit international news... The spread of insecure broadband modems (DSL and Cable) is extremely wide-spread, with numerous ISPs, large and small, whose entire (read significant portions of) broadband population is vulnerable. more»

Domain Registry Locking Program: It Is There for a Reason, So Why Not Use It?

Feb 17, 2010 1:11 PM PDT

At the beginning of last year, MarkMonitor participated in VeriSign's beta program to test server-level protections which were designed to mitigate the potential for unintended domain name changes, deletions and transfers. When VeriSign finally released their Registry Locking Program to all registrars, I expected to see the owners of highly trafficked sites flocking to this new offering. However, after a review of the top 300 most highly trafficked sites, I was shocked to uncover that less than 10% of these valuable domains were protected using these newly available security measures. more»

Project Title: Adopt-an-Haitian-Internet-Technician-or-Facility

Feb 14, 2010 10:02 AM PDT

I circulated this, and its precursors, notes about the necessity for diesel to keep the generators powering Boutilliers Hill NAP on the Hatian-Dominican Republic Border from failing, earlier this month on the North American Operators Group (NANOG) mailing list. Efforts by former ICANN people, in public service and in the private sector, were critical to bringing the continuity of the surviving infrastructure to the attention of the White House, the Department of State, and the Southern Command. more»

A Dangerous Buzz, and Opt-In Isn't Just for Email

Feb 12, 2010 2:56 PM PDT

Google is great at generating buzz, and they've done it again with their new social vitality tool, appropriately named Google Buzz. Buzz takes all of your Gmail contacts (and presumably other connections from elsewhere within the Googleplex), and makes them all your "friends" by default; it then shares your activity from Google Reader, YouTube, and other tools with all of them, and vice versa... more»

DNS Resolvers and DNSSEC: Roll Over and Die?

Feb 12, 2010 10:39 AM PDT

Security is great when all the green lights are shining brightly and everything validates as intended, but what happens when you encounter failure? In this work we examine the behaviour of the DNS when security, in the form of DNSSEC is added, and we look at what happens when things do not happen as intended. What triggered this examination was a sudden increase in the traffic generated by secondary servers for the in-addr.arpa reverse zones in December 2009. more»

View More

News Briefs

Memory Cards of 3,000 Vodafone Mobiles Infected With Malware

  • Mar 19, 2010 12:02 PM PDT
  • Comments: 0

German High Court Says No to Retaining Telecom, Email Data for Tracking Criminal Networks

  • Mar 02, 2010 12:32 PM PDT
  • Comments: 0

Comcast Announces Aggressive Plan to Deploy DNSSEC, Launches First Public Trial

  • Feb 23, 2010 1:15 PM PDT
  • Comments: 0

How IT and Internet Saved Lives in Haiti

  • Feb 17, 2010 2:07 PM PDT
  • Comments: 0

Google Dumps Illicit Pharmacy Advertisements

  • Feb 10, 2010 12:22 PM PDT
  • Comments: 0

The US House Passes Cybersecurity Bill

  • Feb 04, 2010 2:10 PM PDT
  • Comments: 0

Google, NSA Join Forces in the Effort to Build Better Cyberattack Defense System

  • Feb 04, 2010 1:56 PM PDT
  • Comments: 0

AFNIC Invites Network Managers to Prepare for the Signing of the DNS Root in May 2010

  • Jan 28, 2010 9:36 AM PDT
  • Comments: 0

ICANN Begins Public DNSSEC Test Plan for the Root Zone

  • Jan 27, 2010 2:00 PM PDT
  • Comments: 1

Despite China's Denial, US Says It Will Aggressively Press the Cyber Attack Issue

  • Jan 26, 2010 8:15 AM PDT
  • Comments: 0

China's CNCERT Response to Google

  • Jan 22, 2010 11:49 PM PDT
  • Comments: 0

Reality Check on Google-China Saga

  • Jan 22, 2010 1:02 PM PDT
  • Comments: 0

Arbor Netowrks: Internet Architecture and Operations Facing Perfect Storm

  • Jan 20, 2010 1:55 PM PDT
  • Comments: 0

Malware and Botnet Operators Setting Up Their Own Data Centers

  • Dec 22, 2009 7:34 AM PDT
  • Comments: 1

US Cybersecurity Coordinator Selected by Obama

  • Dec 22, 2009 7:11 AM PDT
  • Comments: 0
View More

Most Viewed

Trench Warfare in the Age of The Laser-Guided Missile

  • Comments: 1
  • Views: 481,129

Network Solutions Responds to Front Running Accusations

  • Comments: 34
  • Views: 81,566

Port 25 Blocking, or Fix SMTP and Leave Port 25 Alone for the Sake of Spam?

  • Comments: 31
  • Views: 67,384

How to Stop Spam

  • Comments: 33
  • Views: 51,089

Bug Reveals the Snooper in VeriSign's Site Finder

  • Comments: 9
  • Views: 42,739
View More

Most Commented

Not a Guessing Game

  • Comments: 41
  • Views: 32,534

An Authenticated Internet

  • Comments: 36
  • Views: 4,003

Network Solutions Responds to Front Running Accusations

  • Comments: 34
  • Views: 81,566

How to Stop Spam

  • Comments: 33
  • Views: 51,089

Port 25 Blocking, or Fix SMTP and Leave Port 25 Alone for the Sake of Spam?

  • Comments: 31
  • Views: 67,384
View More

Industry Updates

MarkMonitor Year in Review Report: How Escalating Online Brand Abuse is Used to Monetize Web Traffic

.ORG to Fully Deploy DNSSEC in June

  • By PIR
  • Mar 11, 2010

The GLOBE Program Chooses Dyn Inc.'s Dynect Platform to Deploy DNSSEC per Federal OMB Mandate

MarkMonitor Sets New Standard in Brand Protection with Site Staydown Service

ICANN and Cybersecurity: Hot Topics at The First Ever .ORG Forum

  • By PIR
  • Jan 31, 2010

Neustar Implements DNS Security Extensions in the .US Registry

Neustar Launches Initiative to Enhance DNS With Faster, More Secure Updates

Registry Stakeholder Group Comments on Latest ICANN Policies

  • By PIR
  • Dec 08, 2009

Open Phishing Season

Nominum Announces "DNSSEC Made Easy" Solutions

.ORG Highlighted for Success in Fighting Phishing

  • By PIR
  • Oct 29, 2009

Afilias' Matt Pounsett Elected Director-at-Large for DNS-OARC

SPECIAL: Updates from the ICANN Meetings in Seoul

SEO Poisoning: A Persistent Malware Threat Targeting High-Profile Brands

Nominum CEO: Commercial vs. Open Source - Let Customers Choose

View More