Threat Intelligence

Sponsored
by

Noteworthy

Reverse WHOIS: A Powerful Process in Cybersecurity

WHOIS History API: Powering Domain Investigations

Domain Research and Monitoring: Keeping an Eye on the Web for You

Threat Intelligence / News Briefs

Microsoft to License Netcraft's Phishing Site Feed

Microsoft has licensed Netcraft's Phishing Site Feed for use in its Microsoft Phishing Filter Service, providing users of Internet Explorer 7 protection against the latest phishing attacks reported by the Netcraft Toolbar Community.

Microsoft's inclusion of Netcraft data in the Microsoft Phishing Filter was announced by Microsoft chairman Bill Gates during his keynote speech at the RSA Conference in San Francisco. more

Attack Seriously Slows Two Internet Root Servers

Online attackers have briefly disrupted service on at least two of the 13 "root" servers that are used to direct traffic on the Internet.

The attack, which began Tuesday at about 5:30 a.m. Eastern time, was the most significant attack against the root servers since an October 2002 distributed denial of service (DDOS) attack, said Ben Petro, senior vice president of services with Internet service provider Neustar Inc. more

Are Domain Name Registrars Free-Speech Friendly?

 more

Phishing Attacks Surpass Viruses and Trojans

Phishing attacks have outnumbered emails infected with viruses and Trojan horse programs for the first time, according to security experts.

...The difference in the ratio of phishing to virus attacks is partly due to virus attacks becoming more targeted and no longer occurring as one large outbreak. This includes the recent Storm Worm and Warezov attacks, according to MessageLabs. more

2007 Security Threats More Targeted

With the new calendars freshly hung on the wall, an important question surfaces: What security threats are on the rise for 2007? It appears that the year will bring more narrowly defined threats or "targeted threats," which are different from what we've seen before. They are more focused on individual information as opposed to mass-mailing worms that are sent over the Internet to randomly infect victims. more

85 Billion Messages a Day, Spam Up 35% in November

Spam volume soared another 35% in November, an e-mail security vendor said Thursday, and the month saw spam tactics that reduced the efficiency of traditional anti-spam filters. ..."from 31 billion spams a day on average in October 2005 to 63 billion in October 2006. But in November, we saw two surges that averaged 85 billion messages a day, one from Nov. 13 to 22, the other from Nov. 26 to 28. more

Former MySpace Chairman Teaming with VeriSign to Promote .TV

The former chairman of MySpace.com is throwing his weight behind the ".tv" domain category, betting that it will gain popularity as more users watch, create and post videos online.

Richard Rosenblatt's Demand Media will unveil on Wednesday a deal with Internet security and dot-com registry VeriSign Inc. to begin marketing .tv as a preferred Web site domain for online videos, in the same way .org is used for non-profit groups. more

Registrars Say No to Phishers? Watchdog Group Calls Issue 'Complex'

Unfortunately, it is not possible for a registrar to know a-priori whether a site is going to be used for phishing or not, says Dave Jevans, chairman of the Anti-Phishing Working Group. There are many "squatters" who may have every right to register domain names with other companies' trademarks in them, per ICANN policy... more

United States Cited As Top Spam Nation

The United States and China remained atop the list of countries spewing spam for the third quarter, U.K.-based security vendor Sophos said Monday, and the former had the dubious honor of extending its lead in the battle for spam share. more

Reviving Concerns Over Internet Control

Starting next week, about 1,200 diplomats and technology ministers will gather at a hotel in the outskirts of Athens to resume a debate that has often pitted the Bush administration and a handful of its Western allies against Brazil, India, China and African countries. Officially, the inaugural meeting of the United Nations' Internet Governance Forum is designed to explore topics like free speech, security, spam and multilingualism... more

UN Internet Governance Forum to Hold First Meeting

The UN's Internet Governance Forum will hold its first meeting Oct. 30 to discuss the future of the Internet, especially as it relates to access, security, diversity and emerging issues.

...Nitin Desai, who will chair the meeting, said the technology is young and people have not really sorted out how the Internet should be treated. He compared debates about the Internet to those about the chemical composition of ink and the design of the paper when the printer was invented, which missed the point. more

Internet Neither Safe Nor Secure

As stakeholders, we need an advocate, ICANN, which must ensure that security is never sacrificed. ...It doesn't take a mathematician with a Ph.D. to see that the proposed registry agreements do not provide better security and stability for the DNS; it takes only good common sense. We all know the value of stop signs in intersections.  more

IPv6 Making Its Way Into Corporate IT Systems Sooner Than Expected

"The thing is if you install any Unix operating system now it comes with IPv6 enabled." In addition, Microsoft's Vista operating system, set for release in the coming months, is expected to have support for IPv6 enabled, he said. With support for IPv6 enabled in these operating systems, IT managers need to be prepared to address security issues in the new protocol. more

VeriSign, Critics Gear Up for ICANN Hearing

A VeriSign Inc. official defended its contract to operate the .com domain Monday, after Network Solutions accused the Internet Corporation for Assigned Names and Numbers (ICANN) of not requiring adequate security safeguards in its registry agreements. Network Solutions, a domain-name registrar, released a report last week saying ICANN has "failed" to address security in its latest proposals for the .com, .biz, .info and .org top-level domains. more

Analysis Report Recommends Key Security Changes to ICANN's Pending Registry Proposals

A report released today ("DNS - A System in Crisis," commissioned by Network Solutions) has concluded that in proposals for the .com, .biz, .info and .org registries, the Internet Corporation for Assigned Names and Numbers (ICANN) has failed to ensure adequate security safeguards. The report, written by security technology expert Jerry Archer, recommends that oversight, planning and testing provisions be implemented in the proposals to run these registries before they are finalized. more

Industry Updates

Top Music Streaming Services: What's Their Potential Domains & Subdomains Attack Surface?

More from DarkSide? We Ran an Analysis of Additional Identified Artifacts

ZeuS, Still Alive and Kicking in the Form of Jabber ZeuS?

SideWinder DNS Blackholes Uncovered with Threat Intelligence Platform

Why Are Seemingly Intranet Pages Exposed on the Internet?

Uncovering More Artifacts Related to the Endless Mayfly Disinformation Campaign

Given a Malicious Email Address, What Can You Discover with Maltego's WhoisXML API Transforms?

Crypto-Related Domains and Subdomains: What's Underneath the 30K of Them?

Looking Into the Latest Microsoft Exchange Server Vulnerability Exploitation

Hidden Botnet C&C on Legitimate Infrastructure? The Case of 000webhostapp[.]com

A Deep Dive into Known Magecart IoCs: What Are the Connected Internet Properties?

COVID-19-Related Bulk Domain Registrations: A Possible Case of DNS Abuse?

Protecting Intellectual Property Protects Consumers

"Voltswagen": April Fool's Prank, Brand Turmoil, and Bulk Domain Registrations

What Are the Common Forms of Bulk Domain & Typosquatting Registrations?