Hot Topics:   Domain Names    DNS    Policy & Regulation    Cybersecurity    Broadband    Brand Protection    Telecom   
DNS Abuse Forum - May 25

Blog Posts

Multistakeholderism Is Working: Even in Exile

Paul McGrady I'm happy to report (mostly) positive feedback on my last article that examined how the multistakeholder model tackled, and tackled well, Phase 1 of the review of all Rights Protection Mechanisms. While bad news may sell more clicks, a little good news from time to time also appears to be welcome. Good news also reminds us of how fortunate we are to have a private sector ICANN with a multistakeholder model of policy development... more

ICANN's Tax Exemption Requires Updated Review

Greg Thomas In September 2015, John Levine asked why ICANN should be considered a tax-exempt organization following the completion of the U.S. government's transition of technical management of the Internet's Domain Name System (DNS). The U.S. Internal Revenue Service (IRS) determined that ICANN was an exempt organization in 2000 and, inarguably, circumstances have evolved materially since then. more

A Look Back at the Pandemic and What Was Missed in the ISPs' Broadband Performance Reports

Doug Dawson I was looking back at industry reporting a year ago after the impact of the pandemic first hit our broadband networks. Almost every big ISP issued press releases talking about how well it had weathered the pandemic and bragged about the resiliency of its networks. It turns out that these ISP press releases largely missed the point. They are right that their networks didn't crash, but once we understood the nature of the changes in broadband traffic due to the pandemic, that wasn't a big surprise. more

Rumblings for an In-Session Recommendation Engine at Email Service Providers, Part I

Fred Tabsharani Email Campaign builders (marketers) are flying blind. I know ESPs are genuinely timely about rolling out new products for their marketers, but there is a colossal gap in adopting data science and MLops into the email campaign building workflow.  Even MailChimp does not seem to have the answer just yet, and half-baked attempts over the years to optimize the subject line haven't been inspiring. more

Transport vs. Network

Geoff Huston One of the basic tools in network design is the so-called "stacked" protocol model. This model was developed in the late 1970s as part of a broader effort to develop general standards and methods of networking. In 1983, the efforts of the CCITT and ISO were merged to form The Basic Reference Model for Open Systems Interconnection, usually referred to as the Open Systems Interconnection Reference Model or the "OSI model." more

NSA Takes a Leadership Seat at the Global 5G Security Table

Anthony Rutkowski It has been a long time coming. In the world of global 5G security, there is only one principal forum. The somewhat cryptically named 3GPP SA3 is dedicated to 5G security and holding its 103rd meeting electronically next week from 17 to 28 May with 772 submitted documents and 189 participants registered. SA3 meets every 60 days and exists at the security center of an ecosystem of numerous technical groups encompassing many hundreds of companies, industry organizations, and government agencies worldwide. more

To 5.5G and Beyond

Doug Dawson I recently saw an article in FierceWireless that reports that Huawei thinks we are going to need an intermediate step between 5G and 6G, something like 5.5G. To me, this raises the more immediate question about why we are not talking about the steps between 4G and 5G? The wireless industry used to tell the truth about cellular technology. You don't need to take my word for it... more

Mistrust of ICANN Is Fully Vindicated

Greg Thomas Recently, I have been reporting on a highly questionable auction scheme for a single domain name, o.com, which is currently being improperly warehoused by ICANN along with a number of other .com and .net domain names. This violates ICANN's Bylaws -- but, so what? more

Still Waiting for IPv6

Doug Dawson It's now been a decade since the world officially ran out of blocks of IP addresses. In early 2011 the Internet Assigned Numbers Authority (IANA) announced that it had allocated the last block of IPv4 addresses and warned ISPs to start using the new IPv6 addresses. But here we are a decade later and not one of my clients has converted to IPv6. more

Ten Years of Passive DNS

Paul Vixie The report, "A Decade of Passive DNS" provides a longitudinal analysis of the use and popularity of top-level domains over a ten-year period. The findings are based on what Farsight Security has seen in passive DNS from 2010-2019 based on a ten-year data rollup, excluding DNSSEC-related records. This study allows us to report on four measures for that period for each of the 1,576 IANA-recognized TLDs. more

The Slow Death of Satellite TV?

Doug Dawson There have been rumors for years about merging Dish Networks and Direct TV to try to gain as much market synergy as possible for the two sinking businesses. It's hard to label these companies as failures just yet because between two companies collectively still had 21.8 million customers at the end of 2020 (DirectTV 13.0 million, Dish 8.8 million). This makes the two companies collectively the largest cable TV providers, with Comcast at 19.8 million and Charter at 16.2 million. more

Huawei's Q1 2021 Phone Sales Down by Over 30%

Dave Burstein "2021 will be another challenging year for us, but it's also the year that our future development strategy will begin to take shape," said Eric Xu, Huawei's Rotating Chairman. Huawei generated CNY152.2 billion in revenue, a 16.5% decrease year-on-year. The Network Business continued to grow. It wasn't officially announced1, but consumer products other than phones probably increased sales. The fitness tracker, earbuds, and watches are winning strong reviews. more

The $100 Billion National Broadband Plan for America

Paul Budde The new Biden Administration in the USA laid out a $100 billion proposal for broadband investment as part of its $2 trillion+ infrastructure plan. Under the proposal, the plan is to provide national broadband coverage. The Administration will use better competition measures, such as price transparency, the use of public utility infrastructure, and subsidies for low-income households to achieve its goals. more

Leaked Documents Reveal Xi Jinping's Communist Chinese Plan to Control the Internet's Root

Greg Thomas Yesterday, The Epoch Times reported on leaked internal Chinese government documents revealing that premier Xi Jinping has "personally directed the communist regime to focus its efforts to control the global Internet, displacing the influential role of the United States." Xi's ultimate aim is for the Chinese Communist Party (CCP) to wield "discourse power" over communications and discussions on the global geopolitical stage by controlling content on the Internet. more

Think Beyond .com: From Country Codes to Internationalized Domain Names

John Yunker One of the major takeaways from the Web Globalization Report Card is the importance of providing "front doors" to your localized websites. These doors begin with the addresses themselves, which may not include the .com domain. In fact, I'd recommend that most localized websites not use the .com domain, as this is an overloaded domain. This article looks at the many ways brands are creating more localized addresses, beginning with country code top-level domains (ccTLDs). more

News Briefs

Close to Half of US East Coast Fuel Supply Shutdown Due to Ransomware Cyberattack

Colonial Pipeline, which accounts for close to half of the United States East Coast's fuel, has shut down its operations due to a cyberattack. The incident, believed to be the largest successful cyberattack on oil infrastructure in the U.S., was disclosed over the weekend. more

18 Million of the 22 Million Net Neutrality Comments Received by FCC in 2017 Were Fake

A multi-year investigation into 2017 net neutrality rulemaking finds 18 million fake comments were filed with the US Federal Communications Commission (FCC) and half a million fake letters were sent to Congress. more

SpaceX's Starlink Satellite Internet Service Has Received 500K Preorders, Says the Company

SpaceX on Tuesday disclosed that it has received 500,000 preorders for its Starlink satellite internet service and that it anticipates no technical problems meeting the demand. more

InternetNZ Has Disclosed a Vulnerability That Can Be Weaponized Against Authoritative DNS Servers

New Zealand's .nz operator, InternetNZ, on Wednesday disclosed a vulnerability against authoritative DNS servers. The vulnerability called TsuNAME was first detected in February 2020 in the .nz registry and found that it could be exploited to carry out Denial-of-Service (DoS) attacks across the world. more

Government of India Gives the Go-Ahead for 5G Technology and Spectrum Trials, Avoids Chinese Firms

The Department of Telecommunications (DoT), Government of India, approved permissions today to Telecom Service Providers (TSPs) for conducting trials for use and applications of 5G technology. more

Beavers Chewing Through Fiber Cable Cause Hundreds Lose Internet in a Canadian Remote Community

Internet service was down for nearly 900 customers in Tumbler Ridge, British Columbia, over the weekend after beavers chewed through a crucial fiber cable, resulting in "extensive" damage. According to a statement from the area's telecom provider, Telus, the outage also affected some cable TV customers and caused disruptions to local cell phone services. more

Pentagon Gave Control of 175M Dormant IP Addresses to Florida Company Right Before Trump's Departure

The US Department of Defense gave a small unknown Florida company control to millions of its dormant IP addresses, minutes before President Trump left office. According to reports, the unknown Florida company, Global Resource Systems LLC, initially obtained control of 56 million Pentagon-owned IP addresses on January 20 and later increased to near 175 million IP addresses. more

Security Researcher Dan Kaminsky Has Died

The celebrated security researcher, Dan Kaminsky, widely known for his work on discovering cruicisl DNS security flaws, Sony Rootkit infections and pupular talk at the Black Hat Briefings. more

ISPs Saw a 30% Increase in Traffic During the Pandemic, 40% During Peak Business Hours

ISPs in the U.S. saw a significant surge in both downstream and upstream traffic, increasing at least 30% and as much as 40% during peak business hours and as much as 60% in some markets, according to a new report from the Broadband Internet Technical Advisory Group (BITAG).  more

PIR Launches New Institute to Combat DNS Abuse

Public Interest Registry (PIR), the non-profit operator of the .org top-level domain, today launched the DNS Abuse Institute, a centralized effort to combat DNS Abuse. In its news release, PIR said the Institute "will bring together leaders in the anti-abuse space to fund research, publish recommended practices, share data, and provide tools to identify and report DNS Abuse." more

Alphabet to Shut down Loon, its Balloon Based Internet Access Project

Despite several groundbreaking technical achievements over the past nine years, Google's parent company Alphabet has decided to end the Loon project. The company said the road to commercial viability has proven much longer and riskier than hoped.  more

DNSSEC Now Deployed in all Generic Top-Level Domains, Says ICANN

The Internet Corporation for Assigned Names and Numbers organization (ICANN org) announced that all of the current 1,195 generic top-level domains (gTLDs) have deployed Domain Name System Security Extensions (DNSSEC). more

Donuts Completes the Acquisition of Afilias

Donuts stated today that it has completed the acquisition of Afilias announced on November 19. Donuts' CEO Akram Atallah says the company is now ready to begin the integration plan promising minimal disruptions to customers. more

The Government of Niue Launches Proceedings With ICANN to Reclaim Its .nu Top-Level Domain

The Government of Niue, a small island 2,400 kilometers northeast of New Zealand, launched proceedings today demanding a "redelegation" of its country code top-level domain, .nu, from the Internet Corporation for Assigned Names and Numbers (ICANN). more

A New Privacy-Focused DNS Protocol Released Called Oblivious

Cloudflare and Apple, along with Fastly, on Tuesday announced a new proposed DNS standard that separates IP addresses from queries preventing an entity from seeing both at the same time. more

Internet Society Extends Its Significant Financial Support Commitment to the IETF

According to an announcement on Monday, the Internet Society has agreed to extend its existing financial commitment to the Internet Engineering Task Force (IETF) for an additional term of six years. more

WIPO Arbitration and Mediation Center Registers Its 50,000th "Cybersquatting" Case

The WIPO Arbitration and Mediation Center on Monday announced it had registered its 50,000th "cybersquatting" case. The 50,000th case just received by WIPO coincides with the organization's 20th anniversary on November 20, 2020. more

DDoS Attacks Are Surging Both in Frequency and Sophistication

Cloudflare's new report warns about the significant increase of DDoS attacks and their level of sophistication. The numbers doubled from Q1 to Q2 and doubled again in Q3, resulting in a four-fold increase compared to the pre-COVID level in the first quarter. more

Donuts to Acquire Afilias

Donuts and Afilias announced today that Donuts is acquiring Afilias in a deal that is expected to close in December 2020 for an undisclosed amount. The combined entities will support over 25 million domain names spanning well over 400 TLDs. The deal will not include certain Afilias businesses, such as the mobile software and registrar businesses, which will remain with Afilias' original group of investors. more

U.S. Military Is Buying Location Data of People Around the World Through Ordinary Apps

The U.S. military is buying the granular movement data of ordinary people worldwide, harvested from innocuous-seeming apps, reports Motherboard. Among the apps connected to this type of data sale is a Muslim prayer and Quran app with more than 98 million downloads worldwide. more

Most Read – Last 30 Days

Recent Comments

Topics

Threat Intelligence

Sponsored byWhoisXML API

Cybersecurity

Sponsored byVerisign

Domain Names

Sponsored byVerisign

Brand Protection

Sponsored byAppdetex

IPv4 Markets

Sponsored byIPXO

Domain Management

Sponsored byMarkMonitor

DNS Abuse Forum - May 25

Industry Updates

Crypto-Related Domains and Subdomains: What's Underneath the 30K of Them?

WhoisXML API Cryptocurrencies keep making waves in the online community, making them prime vehicles of threat actors in scam, phishing, and other malicious campaigns. Fraudsters, for one, have stolen millions of dollars worth of cryptocurrencies from investors through websites that promise rewards, giveaways, and earning opportunities. more

Looking Into the Latest Microsoft Exchange Server Vulnerability Exploitation

WhoisXML API A threat actor reportedly infiltrated the network of and stole data from a financial institution about a month ago by exploiting any of four Microsoft Exchange Server vulnerabilities -- CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, or CVE-2021-27065. While patches for all these have been released, users who have not downloaded and installed these could remain at risk. more

Radix's .Tech Domains Partners with Code.org to Bridge Widening Gender, Race Gap in Computer Science

Radix .Tech Domains, the leading new domain extension for the tech ecosystem, recently announced that it is collaborating with Code.org, a nonprofit dedicated to expanding access to computer science in schools. more

Hidden Botnet C&C on Legitimate Infrastructure? The Case of 000webhostapp[.]com

WhoisXML API Threats can come from anywhere, even from legitimate hosting infrastructure. In fact, many cybercriminals often host their command-and-control (C&C) servers in known hosting providers' networks, sometimes those that offer bulletproof hosting services, to evade detection and consequent blocking. more

A Deep Dive into Known Magecart IoCs: What Are the Connected Internet Properties?

WhoisXML API Magecart-style attacks have been around for a while and continue to be mentioned in the news in 2021. We found and collected a list of 20 domain names that have been mentioned in the past months on VirusTotal as Magecart indicators of compromise (IoCs). more

COVID-19-Related Bulk Domain Registrations: A Possible Case of DNS Abuse?

WhoisXML API Addressing Domain Name System (DNS) abuse has been a priority of the Internet Corporation for Assigned Names and Numbers (ICANN), notably since March 2020. During its 70th conference, the organization's members talked about creating a web page defining DNS abuse-related terms, which should be updated over time, to help users report cases. more

Changing Roles Changes Risk

CSC Managing a company's digital assets, administrators must keep their eyes on who has access to important resources like domains, domain name servers, and digital certificates - and with which vendors. more

Protecting Intellectual Property Protects Consumers

Appdetex Next week we will celebrate World IP Day. Observed annually on the 26th of April, World IP Day was created by WIPO in 2000 to highlight the critical role that intellectual property plays in our daily lives and in society as a whole. more

"Voltswagen": April Fool's Prank, Brand Turmoil, and Bulk Domain Registrations

WhoisXML API The accidental leak of Volkswagen's new name that turned out to be an April Fool's prank made headlines. Some were relieved that it was just a marketing stunt, while others cried foul. But those in the field of cybersecurity became more curious. What did the cyber world look like during the supposed leakage until the announcement that it was a prank? more

Leasing IPv4 Addresses in the Dawn of the New Internet Era

IPXO Increased use of internet services, broader application of IoT devices, and COVID-related shift to remote work are just a few factors accelerating the transition to the new era of the Internet. However, the current network architecture is falling behind the imposed expectations to support new-age integrations, leaving one to wonder if the gap will close up any time soon. more

What Are the Common Forms of Bulk Domain & Typosquatting Registrations?

WhoisXML API Typosquatting can enable a variety of cyber threats that include but are not limited to phishing, malware-enabled attacks, and vulnerability exploitation. In a nutshell, the attackers can rely on the technique to mimic legitimate solution and service providers' domains to trick users into thinking they are getting update notifications from their vendors, for example, when they are actually not. more

Together for the Good of the Internet: eco Complaints Office Registers More Reports Than Ever Before

eco For 25 years, the Complaints Office of eco -- Association of the Internet Industry has been successfully combatting illegal content on the Internet. The 2020 report now available shows that the independent hotline is making a significant contribution to the take-down and criminal investigation of illegal content. more

We Detected and Analyzed Thousands of CCTV-, Firewall-, and SCADA-themed Domains & Subdomains

WhoisXML API Did you know that a comprehensive subdomain database can give you 69,383 fully qualified domain names (FQDNs) with the string "firewall," 241,654 FQDNs for "cctv," and 19,048 FQDNs for "scada"? That data can give cybersecurity researchers possible starting points for an article or even a full-blown research paper. more

DNS Over HTTPS: Spanish Version of eco Discussion Paper on DoH Available

eco Throughout the history of the Internet, traditional DNS traffic - for example, when a user types a website name into a browser - has largely been unencrypted. The DNS over HTTPS (DoH) protocol, which first emerged in 2018, makes use of the well-known secure HTTPS web protocol to change that. more

How Reverse IP Lookup API Can Help Detect Connected Domains

Threat Intelligence Platform (TIP) In 2020, reports say 94% of malware were delivered via email. Phishing remains a threat, as it accounts for more than 80% of security incidents that can cost victims almost US$18,000 per minute. more

MarkMonitor Releases New gTLD Quarterly Report for Q1 2021

MarkMonitor The Q1 2021 New gTLD Quarterly Report from our MarkMonitor team examines .kpmg usage, new gTLD Alexa.com rankings, recent launch analyses, and potential policy effects on .brand 'next round' applicants. more

What Is a VPN Detection API? How Does It Work?

Ipify Privacy is of great concern to a majority of Internet users -- and legitimately so. After all, not all of the companies that handle personal data reveal where they use the information. Privacy is one of the primary reasons for the use of VPNs, proxies, and even Tor. more

Leading Voices  –  From our corporate sponsors

Marc Lindsey President and Co-founder at Avenue4 LLC 4 posts viewed 41,509 times
Ram Mohan Chief Operating Officer at Afilias 36 posts viewed 660,625 times
Dr. James Galvin Director, Technical Standards and Strategic Relationships at Afilias 4 posts viewed 58,040 times
Jonathan Robinson Executive Chairman at Afilias 1 post viewed 9,597 times
Shumon Huque Principal Research Scientist at Verisign Labs 1 post viewed 17,400 times
Keith Drazek Vice President, Public Policy & Government Relations at Verisign 2 posts viewed 21,255 times
Danny McPherson Executive Vice President and Chief Security Officer at Verisign 12 posts viewed 152,572 times
Roland LaPlante Senior Vice President and Chief Marketing Officer at Afilias 17 posts viewed 233,581 times
Paul Livesay VP and Counsel at Verisign 1 post viewed 14,975 times
Duane Wessels Distinguished Engineer at Verisign 6 posts viewed 70,920 times
Scott Hollenbeck Senior Director of the Verisign Registry Services Lab 12 posts viewed 153,280 times
Dr. Burt Kaliski Jr. Senior VP and Chief Technology Officer at Verisign 29 posts viewed 267,594 times
John Kane Vice President of Corporate Services, Afilias 4 posts viewed 58,988 times
Janine Goodman Vice President and Co-founder at Avenue4 LLC 6 posts viewed 58,469 times
Chuck Gomes VP of Policy and Compliance, Naming and Directory Services at VeriSign 2 posts viewed 26,875 times