Domain Name Server (DNS) - Security Intelligence

Fiber optic cable box in a DNS server room: passive DNS

article

How to Use Passive DNS to Inform Your Incident Response

Passive DNS replication can be an essential source of data to contextualize your threat intelligence and inform your incident response plan.

November 5, 2018 | By Koen Van Impe

article

news

Just 1 Percent of Companies Feel Ready to Fend Off Media Security Threats, Survey Reveals

According to a recent study, just 1 percent of U.S. media companies reported high levels of confidence in their ability to withstand a variety of media security attacks.

April 11, 2018 | By Shane Schick

news

A fishing hook grabbing a credit card chip with a keyboard in the background.

news

Change of Style in Phishing Attacks Creates Fresh Concerns for Big-Name Brands

Cybercriminals are changing their tactics when it comes to phishing attacks, shifting their efforts from hacked web servers to malicious domains.

June 29, 2017 | By Mark Samuels

news

Security professionals have long used the Common Vulnerability Scoring System (CVSS) to rate vulnerabilities, but the third and latest version of this system should be the most accurate yet. The updated scoring techniques rate the severity of flaws.

article

Markdown: Designer Vulnerabilities Get a Fresh CVSS v3 Look

The Common Vulnerability Scoring System (CVSS) has been completely redone to more accurately reflect the scope and impact of vulnerabilities.

September 8, 2015 | By Pamela Cobb

article

Today's organizations are frequently the target of malware via botnets, including the Angler exploit kit, which is responsible for many attacks carried out by cybercriminals. Users should know the best practices for defending against these attacks.

article

How to Stop a Botnet Created by Angler Exploit Kits

The Angler exploit kit has been responsible for the vast majority of botnets created over the past year. Here's how it works and how to stop it.

September 2, 2015 | By David Strom

article

A DNS server is essential for popular websites to run smoothly and cater to users, but a new attack leveraging a flaw in the BIND9 open-source software could bring these sites to their knees if not proactively addressed and patched.

news

In a BIND: DNS Server Attacks Exploit New Software Flaw

New DNS server attacks are exploiting a flaw in the open-source BIND9, and websites at risk for attack need to move quickly to patch the problem.

August 5, 2015 | By Douglas Bonderud

news

Identity kinetics is rapidly becoming an essential part of threat kinetics, with many professionals using a multipronged approach involving upstream identification, DNS resolutions and more to evaluate security risks, improve detection and deter attacks.

article

Threat Kinetics: The Arms Race Between Black Hat and White Hat Developers

The evolution of threat kinetics to identity kinetics is rapidly advancing, and there are a plethora of organizations pursuing this avenue.

May 8, 2015 | By Russell Couturier

article

Honeypots are an easy way to get statistics on "Internet noise." By monitoring the traffic to a honeypot name server, you can filter normal activity from malicious activity to add more value to a security information and event management (SIEM) solution.

article

Analyzing Queries on a Honeypot Name Server for Better DNS Log Quality

Monitoring a honeypot name server for queries in a public cloud is an easy and popular way of collecting data on "Internet noise."

March 16, 2015 | By Koen Van Impe

article

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Domain Name Server (DNS)

How to Use Passive DNS to Inform Your Incident Response

Just 1 Percent of Companies Feel Ready to Fend Off Media Security Threats, Survey Reveals

Change of Style in Phishing Attacks Creates Fresh Concerns for Big-Name Brands

Markdown: Designer Vulnerabilities Get a Fresh CVSS v3 Look

How to Stop a Botnet Created by Angler Exploit Kits

In a BIND: DNS Server Attacks Exploit New Software Flaw

Threat Kinetics: The Arms Race Between Black Hat and White Hat Developers

Analyzing Queries on a Honeypot Name Server for Better DNS Log Quality