BIND - Security Intelligence

A cursor hovering over an address bar in a web browser.

article

The Past, Present and Future of DNS Security

As the fabric of the internet evolves, security professionals must be aware of DNS security threats, such as DDoS attacks and schemes designed to direct users to malicious websites.

December 22, 2017 | By Larry Loeb

article

You can use any feature of DNS requests, such as the length of the domain name or the number of subdomains, to construct models of your network's expected behavior, through which you can observe more closely. This requires no fancy or expensive tools.

article

Protecting Your Network Through Understanding DNS Requests

Sometimes it just takes a little common sense and knowledge of your system log files and the DNS requests contained therein to detect a data breach.

August 5, 2016 | By David Strom

article

A DNS server is essential for popular websites to run smoothly and cater to users, but a new attack leveraging a flaw in the BIND9 open-source software could bring these sites to their knees if not proactively addressed and patched.

news

In a BIND: DNS Server Attacks Exploit New Software Flaw

New DNS server attacks are exploiting a flaw in the open-source BIND9, and websites at risk for attack need to move quickly to patch the problem.

August 5, 2015 | By Douglas Bonderud

news

article

Subverting BIND's SRTT Algorithm: Derandomizing NS Selection

New vulnerability found in BIND, the most popular DNS server. Exploiting this vulnerability allows to reduce the amount of effort required for an off-path (blind) DNS cache poisoning attack. This blog post describes the vulnerability in a less...

August 13, 2013 | By Roee Hay

article

InterPlanetary Storm Malware Using IPFS P2P Network to Hide Its Activities

Threat Actors Use Targeted Attack Tools to Distribute Cryptocurrency Miners, Ransomware

XENOTIME Threat Group Now Targeting Electric Utility Organizations

Fraudsters Abuse Smartphone Google Calendar Feature to Push Through Scam Offers

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Webinar: Under the Radar: IBM QRadar Demo Series

Webinar: Appliance Networking Topics

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Tag: BIND

The Past, Present and Future of DNS Security

Protecting Your Network Through Understanding DNS Requests

In a BIND: DNS Server Attacks Exploit New Software Flaw

Subverting BIND's SRTT Algorithm: Derandomizing NS Selection