2024, DNS and Internet - Cyber Security Informer

DNSBomb: New DDoS Attack Explodes DNS Traffic, Threatening Critical Internet Infrastructure

Penetration Testing

MAY 23, 2024

Researchers from Tsinghua University have unveiled a potent new method for launching distributed denial-of-service (DDoS) attacks, dubbed DNSBomb (CVE-2024-33655).

DNS

DNS DDOS Internet Internet

RSAC Fireside Chat: Rich threat intel, specialized graph database fuel HYAS’ Protective DNS

The Last Watchdog

MAY 29, 2024

Related: Selecting a Protective DNS One smart way to do this is by keeping an eagle eye out for rogue command and control (C2) server communications. And this beaconing must intersect with the Domain Name System (DNS.) DNS security and the overall Protective DNS space is rising in importance.

DNS

DNS Cyber Insurance Insurance Internet

MY TAKE: RSAC 2024’s big takeaway: rules-based security is out; contextual security is taking over

The Last Watchdog

MAY 13, 2024

Secretary of State Antony Blinken opened RSA Conference 2024 last week issuing a clarion call for the cybersecurity community to defend national security, nurture economic prosperity and reinforce democratic values. Big security services role The second grouping of vendors I met with at RSAC 2024 were more about a security services component.

Artificial Intelligence

Artificial Intelligence Technology Accountability DNS

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Over 92,000 Internet-facing D-Link NAS devices can be easily hacked

Security Affairs

APRIL 7, 2024

A researcher who goes online with the moniker ‘Netsecfish’ disclosed a new arbitrary command injection and hardcoded backdoor flaw, tracked as , tracked as CVE-2024-3273 , that impacts multiple end-of-life D-Link Network Attached Storage (NAS) device models. DNS-327L Version 1.09, Version 1.00.0409.2013 DNS-340L Version 1.08

Internet

Internet Internet DNS Hacking

VulnRecap 2/19/2024: News from Microsoft, Zoom, SolarWinds

eSecurity Planet

FEBRUARY 19, 2024

February 13, 2024 Zoom Fixes Critical Vulnerability in Windows Products Type of vulnerability: Improper input validation. The vulnerability CVE is CVE-2024-24691. Among the vulnerabilities is CVE-2024-21412 , an Internet Shortcut Files flaw that allows an unauthenticated attacker to send a malicious file to a user.

VPN

VPN DNS Ransomware Software

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

Most organizations express confidence in their current status and budgets, but also expect to experience at least one data breach in 2024. 50,000 DDoS attacks on public domain name service (DNS) resolvers. 553% increase in DNS Flood attacks from 1H 2020 to 2H 2023. 20,551 gambling industry attacks. globally, +19.8%

Cybersecurity

Cybersecurity DDOS Penetration Testing Passwords

April’s Patch Tuesday Brings Record Number of Fixes

Krebs on Security

APRIL 9, 2024

Microsoft today released updates to address 147 security holes in Windows, Office , Azure ,NET Framework , Visual Studio , SQL Server , DNS Server , Windows Defender , Bitlocker , and Windows Secure Boot. Yes, you read that right. “As far as I can tell, it’s the largest Patch Tuesday release from Microsoft of all time.”

DNS

DNS Social Engineering Malware Media

Cisco addressed high-severity flaws in IOS and IOS XE software

Security Affairs

MARCH 28, 2024

Below are the most severe issues addressed by the company: CVE-2024-20311 (CVSS score 8.6) – A vulnerability in the Locator ID Separation Protocol (LISP) feature of Cisco IOS Software and Cisco IOS XE Software. CVE-2024-20259 (CVSS score 8.6) – A vulnerability in the DHCP snooping feature of Cisco IOS XE Software.

Software

Software Wireless DNS Internet

New Loop DoS attack may target 300,000 vulnerable hosts

Security Affairs

MARCH 21, 2024

Researchers from the CISPA Helmholtz Center for Information Security (Germany) devised a new denial-of-service (DoS) attack, called loop DoS attack, that hundreds of thousands of internet-facing systems from major vendors. DNS, NTP, and TFTP) protocols. “The vulnerability affects both legacy (e.g.,

DNS

DNS Internet Internet Information Security

News alert: Criminal IP and Quad9 collaborate to exchange domain and IP threat intelligence

The Last Watchdog

MAY 13, 2024

May 13, 2024, CyberNewsWire — Criminal IP, a renowned Cyber Threat Intelligence (CTI) search engine developed by AI SPERA, has recently signed a technology partnership to exchange threat intelligence data based on domains and potentially on the IP address to protect users by blocking threats to end users. Torrance, Calif.,

DNS

DNS Cyber threats Engineering Spyware

Cuttlefish malware targets enterprise-grade SOHO routers

Security Affairs

MAY 1, 2024

Researchers at Lumen’s Black Lotus Labs discovered a new malware family, named Cuttlefish, which targets enterprise-grade and small office/home office (SOHO) routers to harvest public cloud authentication data from internet traffic. The malicious code can also perform DNS and HTTP hijacking within private IP spaces.

Malware

Malware DNS Authentication Telecommunications

7 Best Attack Surface Management Software for 2024

eSecurity Planet

DECEMBER 20, 2023

per year Tenable Tenable One, an exposure management platform Identifies assets using DNS records, IP addresses, and ASN, and provides over 180 metadata fields Tenable Attack Surface Management, Add-on for Splunk ISO/IEC 27001/27002 $5,290 – $15,076.50 Pricing is dependent on the quantity of Internet-facing assets.

Software

Software Risk Architecture Internet

On Your DMARC, Get Set, Go!

Approachable Cyber Threats

FEBRUARY 1, 2024

Category Awareness, Cybersecurity Fundamentals, News Risk Level Google and Yahoo are requiring DMARC beginning February 2024. Starting February 1, 2024, Google and Yahoo will implement new requirements for inbound email, primarily geared toward bulk senders. To get started: ❯ Have a DMARC Policy for your DNS. Don’t send spam.

DNS

DNS Authentication Accountability Cybersecurity

Implementing Zero Trust: Beyond Internal Network Models

Security Boulevard

MAY 8, 2024

With 2024 being the year that people and organizations are realizing that they will never be able to prevent every breach, and they need to ensure the implementation and deployment of appropriate proactive cyber resiliency solutions, zero-trust is rapidly becoming more popular. That’s the role of Protective DNS.

DNS

DNS Cyber Insurance Internet Internet

Fake Lawsuit Threat Exposes Privnote Phishing Sites

Krebs on Security

APRIL 4, 2024

Other Privnote phishing domains that also phoned home to the same Internet address as pirwnote[.]com com is currently selling security cameras made by the Chinese manufacturer Hikvision , via an Internet address based in Hong Kong. Searching DomainTools for domains that include both of these terms reveals pirwnote[.]com.

Phishing

Phishing Cryptocurrency DDOS Internet

On Your DMARC, Get Set, Go!

Approachable Cyber Threats

FEBRUARY 1, 2024

Category Awareness, Cybersecurity Fundamentals, News Risk Level Google and Yahoo are requiring DMARC beginning February 2024. Starting February 1, 2024, Google and Yahoo will implement new requirements for inbound email, primarily geared toward bulk senders. So what does that mean for your organization, and how do you implement it?

DNS

DNS Authentication Accountability Cybersecurity

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

For example, in 2010 Spamdot and its spam affiliate program Spamit were hacked, and its user database shows Sal and Icamis often accessed the forum from the same Internet address — usually from Cherepovets , an industrial town situated approximately 230 miles north of Moscow. I can not provide DNS for u, only domains.

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

Cisco+ Secure Connect SASE Review & Features 2023

eSecurity Planet

SEPTEMBER 26, 2023

SD-WAN integration with the SASE controller for Meraki, Catalyst, and others Cisco Umbrella SIG unifies firewall, SWG, DNS-layer security, CASB, and threat intelligence functions into a single and well-tested cloud service.

Firewall

Firewall DNS Architecture Technology

TLS Machine Identity Inventory: How to Gain Full Visibility

Security Boulevard

NOVEMBER 15, 2022

Internet-based discovery is a powerful capability unique to TLS Protect Cloud that starts building an inventory as soon as you sign up. Validation status to determine if there are any configuration errors such as incomplete chains or certificates that fail to align with DNS information which may cause disruptions to service.

Internet

Internet Internet DNS Risk

White House Boosts Zero Trust with New Cybersecurity Strategy

eSecurity Planet

JANUARY 27, 2022

According to the White House order , agencies have until the end of the government’s fiscal year 2024 to reach the target goals laid out in the strategy and based on a zero-trust model developed by the U.S. In addition, enterprise applications will be tested internally and externally and made available in a secure manner over the internet. “A

Cybersecurity

Cybersecurity Architecture Government Authentication

Flaw in PuTTY P-521 ECDSA signature generation leaks SSH private keys

LRQA Nettitude Labs

APRIL 16, 2024

This article provides a technical analysis of CVE-2024-31497 , a vulnerability in PuTTY discovered by Fabian Bäumer and Marcus Brinkmann of the Ruhr University Bochum. PuTTY, a popular Windows SSH client, contains a flaw in its P-521 ECDSA implementation. This vulnerability is known to affect versions 0.68

Authentication

Authentication DNS Software Encryption

Black Hat USA 2023 NOC: Network Assurance

Cisco Security

AUGUST 28, 2023

XDR (eXtended Detection and Response) Integrations At Black Hat USA 2023, Cisco Secure was the official Mobile Device Management, DNS (Domain Name Service) and Malware Analysis Provider. SCA detected 289 alerts including Suspected Port Abuse, Internal Port Scanner, New Unusual DNS Resolver,and Protocol Violation (Geographic).

Wireless

Wireless DNS Mobile Technology

Black Hat Europe 2022 NOC: When planning meets execution

Cisco Security

DECEMBER 22, 2022

Wi-Fi Air Marshal, by Jérémy Couture, Head of SOC, Paris 2024 Olympic Games. Cisco is honored to be a Premium Partner of the Black Hat NOC, and is the Official Network Platform, Mobile Device Management, Malware Analysis and DNS (Domain Name Service) Provider of Black Hat. Threat Hunter / Paris 2024 Olympics SOC: Jérémy Couture.

Engineering

Engineering Mobile Malware Wireless

Cyber Security Informer

DNSBomb: New DDoS Attack Explodes DNS Traffic, Threatening Critical Internet Infrastructure

RSAC Fireside Chat: Rich threat intel, specialized graph database fuel HYAS’ Protective DNS

Webinars

Trending Sources

MY TAKE: RSAC 2024’s big takeaway: rules-based security is out; contextual security is taking over

Webinars

Over 92,000 Internet-facing D-Link NAS devices can be easily hacked

VulnRecap 2/19/2024: News from Microsoft, Zoom, SolarWinds

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

April’s Patch Tuesday Brings Record Number of Fixes

Cisco addressed high-severity flaws in IOS and IOS XE software

New Loop DoS attack may target 300,000 vulnerable hosts

News alert: Criminal IP and Quad9 collaborate to exchange domain and IP threat intelligence

Cuttlefish malware targets enterprise-grade SOHO routers

7 Best Attack Surface Management Software for 2024

On Your DMARC, Get Set, Go!

Implementing Zero Trust: Beyond Internal Network Models

Fake Lawsuit Threat Exposes Privnote Phishing Sites

On Your DMARC, Get Set, Go!

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Cisco+ Secure Connect SASE Review & Features 2023

TLS Machine Identity Inventory: How to Gain Full Visibility

White House Boosts Zero Trust with New Cybersecurity Strategy

Flaw in PuTTY P-521 ECDSA signature generation leaks SSH private keys

Black Hat USA 2023 NOC: Network Assurance

Black Hat Europe 2022 NOC: When planning meets execution

Stay Connected