Schneier on Security

APRIL 18, 2019

DNS hijacking isn't new, but this seems to be an attack of uprecidented scale: Researchers at Cisco's Talos security division on Wednesday revealed that a hacker group it's calling Sea Turtle carried out a broad campaign of espionage via DNS hijacking, hitting 40 different organizations.

DNS 278

DNS Internet Internet Risk 278

Security Affairs

MARCH 31, 2025

Morphing Meerkat phishing kits exploit DNS MX records to deliver spoofed login pages, targeting over 100 brands. Threat actors are exploiting DNS techniques to enhance phishing attacks, using MX records to dynamically serve spoofed login pages. By July 2023 kits could dynamically load phishing pages based on DNS MX records.

DNS 85

DNS Phishing Banking Hacking 85

Krebs on Security

FEBRUARY 18, 2019

” The DNS part of that moniker refers to the global “ D omain N ame S ystem ,” which serves as a kind of phone book for the Internet by translating human-friendly Web site names (example.com) into numeric Internet address that are easier for computers to manage. PASSIVE DNS.

DNS 279

DNS Internet Internet Government 279

Penetration Testing

APRIL 10, 2025

The Domain Name System (DNS) plays a pivotal role, translating human-friendly domain names into the numerical IP addresses that computers understand. And at the heart of many applications facilitating this translation lies c-ares, a robust, asynchronous DNS resolver library.

DNS 91

DNS Cybersecurity Network Security 91

The Hacker News

JUNE 11, 2025

While these tools are essential, one critical layer often goes overlooked: the Domain Name System (DNS). As the starting point of nearly every online interaction, DNS is not only foundational - it’s increasingly a target. When left unsecured, it becomes a single point of

DNS 81

DNS Cyber Attacks Antivirus Firewall 81

Tech Republic Security

NOVEMBER 6, 2024

DNS hijacking is a growing threat that can redirect users to malicious sites. However, using passive DNS monitoring can help to protect data.

DNS 191

DNS Cyber threats 191

The Last Watchdog

APRIL 18, 2023

Related: DNS — the good, bad and ugly Without DNS the World Wide Web never would never have advanced as far and wide as it has. However, due to its intrinsic openness and anonymity DNS has also become engrained as the primary communications mechanism used by cyber criminals and cyber warfare combatants.

DNS 207

DNS Internet Internet Cybersecurity 207

Tech Republic Security

OCTOBER 7, 2024

DNS and IP address management is getting harder as multi-cloud strategies take over in Australia and the APAC region.

DNS 172

DNS 172

Tech Republic Security

NOVEMBER 27, 2023

With AdGuard DNS, you can block ads, customize parental controls and keep tabs on DNS requests coming in or out — all for the lowest price on the web.

DNS 176

DNS 176

Adam Shostack

JANUARY 2, 2025

They asked us to look at the value of DNS security, such as when your DNS provider uses threat intel to block malicious sites. Just point to a DNS server like 9.9.9.9). The report is available from GCA's site: Learn About How DNS Security Can Mitigate One-Third of Cyber Incidents

DNS 130

DNS 130

Cisco Security

MAY 29, 2025

Cisco Secure Access - DNS Defense is a seamless pathway to our Universal ZTNA solution. Learn how it works in the blog.

DNS 61

DNS 61

Heimadal Security

APRIL 23, 2025

This milestone reinforces Heimdals position at the forefront of DNS security. The patent, titled Apparatus and Method of Predicting […] The post Heimdal Awarded Patent for Predictive DNS Technology appeared first on Heimdal Security Blog.

DNS 69

DNS Technology Cybersecurity 69

Krebs on Security

JULY 31, 2024

Your Web browser knows how to find a site like example.com thanks to the global Domain Name System (DNS), which serves as a kind of phone book for the Internet by translating human-friendly website names (example.com) into numeric Internet addresses. And the bulk of these are at a handful of DNS providers.”

DNS 324

DNS Internet Internet Phishing 324

Krebs on Security

MARCH 11, 2022

John Todd is general manager of Quad9 , a free “anycast” DNS platform. DNS stands for Domain Name System, which is like a globally distributed phone book for the Internet that maps human-friendly website names (example.com) to numeric Internet addresses (8.8.4.4.) that are easier for computers to manage.

DNS 337

DNS Internet Internet Phishing 337

Krebs on Security

SEPTEMBER 16, 2021

In such assaults, the perpetrators leverage unmanaged Domain Name Servers (DNS) or other devices on the Web to create huge traffic floods. Ideally, DNS servers only provide services to machines within a trusted domain — such as translating an Internet address from a series of numbers into a domain name, like example.com.

DDOS 356

DDOS DNS Internet Internet 356

Security Affairs

NOVEMBER 14, 2024

The vulnerability CVE-2024-10914 is a command injection issue that impacts D-Link DNS-320 , DNS-320LW, DNS-325 and DNS-340L up to 20241028. “A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been declared as critical. cmd=cgi_user_add.

DNS 114

DNS Internet Internet Hacking 114

Security Affairs

DECEMBER 27, 2024

“A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. The vulnerability can be exploited only if DNS Security logging is enabled. h8, 10.2.10-h12,

DNS 112

DNS Firewall Spyware Software 112

Security Affairs

JANUARY 3, 2025

. “SafeBreach Labs developed a proof of concept exploit for CVE-2024-49113 that crashes any unpatched Windows Server (not just DCs) with no pre-requisites except that the DNS server of the victim DC has Internet connectivity.” ” states the report published by SafeBreach.

DNS 125

DNS Internet Internet Hacking 125

Penetration Testing

JULY 5, 2024

public DNS resolver service experienced disruptions, leaving a small percentage of users worldwide unable to access the service or facing significant latency issues. DNS Service Disrupted by BGP Hijacking and Route Leak appeared first on Cybersecurity News. On June 27, 2024, Cloudflare’s popular 1.1.1.1

DNS 145

DNS Cybersecurity 145

Security Affairs

MAY 1, 2024

The China-linked threat actors Muddling Meerkat are manipulating DNS to probe networks globally since 2019. Infoblox researchers observed China-linked threat actors Muddling Meerkat using sophisticated DNS activities since 2019 to bypass traditional security measures and probe networks worldwide. ” concludes the report.

DNS 141

DNS Firewall DDOS Hacking 141

Schneier on Security

JUNE 22, 2021

Those are your IP address (who and exactly where you are) and your DNS request (the address of the website you want, in numeric form). Once the two pieces of information are split, Private Relay encrypts your DNS request and sends both the IP address and now-encrypted DNS request to an Apple proxy server.

DNS 326

DNS Encryption 326

The Hacker News

MAY 26, 2025

As many as 60 malicious npm packages have been discovered in the package registry with malicious functionality to harvest hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint.

DNS 126

DNS Accountability 126

Penetration Testing

MAY 23, 2024

This innovative attack weaponizes DNS (Domain Name System) traffic to overwhelm and disrupt online services,... The post DNSBomb: New DDoS Attack Explodes DNS Traffic, Threatening Critical Internet Infrastructure appeared first on Penetration Testing.

DNS 145

DNS DDOS Internet Internet 145

The Last Watchdog

MAY 29, 2024

Related: Selecting a Protective DNS One smart way to do this is by keeping an eagle eye out for rogue command and control (C2) server communications. And this beaconing must intersect with the Domain Name System (DNS.) DNS security and the overall Protective DNS space is rising in importance.

DNS 147

DNS Cyber Insurance Insurance Internet 147

Security Affairs

JULY 26, 2024

The Internet Systems Consortium (ISC) released BIND security updates that fixed several remotely exploitable DoS bugs in the DNS software suite. An attacker can exploit these vulnerabilities to disrupt DNS services. ISC addressed four high-severity vulnerabilities (CVSS score of 7.5) In BIND 9 versions 9.18.1 through 9.18.27, 9.19.0

DNS 145

DNS Software Internet Internet 145

Krebs on Security

FEBRUARY 4, 2019

Spammy Bear targeted dormant but otherwise legitimate domains that had one thing in common: They all at one time used GoDaddy’s hosted Domain Name System (DNS) service. The domains documented by MyOnlineSecurity all had their DNS records altered between Jan. 31 and Feb. 22 report on the GoDaddy weakness. Image: Farsight Security.

DNS 277

DNS Ransomware Accountability Internet 277

The Hacker News

MARCH 5, 2024

A new DNS threat actor dubbed Savvy Seahorse is leveraging sophisticated techniques to entice targets into fake investment platforms and steal funds.

DNS 136

DNS Scams Banking Accountability 136

The Hacker News

DECEMBER 11, 2024

Cybersecurity researchers have discovered a new version of the ZLoader malware that employs a Domain Name System (DNS) tunnel for command-and-control (C2) communications, indicating that the threat actors are continuing to refine the tool after resurfacing a year ago. Zloader 2.9.4.0

DNS 127

DNS Malware Cybersecurity 127

Krebs on Security

JANUARY 22, 2019

Your Web browser knows how to find a Web site name like example.com thanks to the global Domain Name System (DNS), which serves as a kind of phone book for the Internet by translating human-friendly Web site names (example.com) into numeric Internet address that are easier for computers to manage. ” SAY WHAT? 13, 2018 bomb threat hoax.

DNS 276

DNS Internet Internet Computers and Electronics 276

Bleeping Computer

FEBRUARY 11, 2024

ExpressVPN has removed the split tunneling feature from the latest version of its software after finding that a bug exposed the domains users were visiting to configured DNS servers. [.]

DNS 141

DNS Software 141

Bleeping Computer

JUNE 14, 2023

The Chinese threat group 'ChamelGang' infects Linux devices with a previously unknown implant named 'ChamelDoH,' allowing DNS-over-HTTPS communications with attackers' servers. [.]

DNS 140

DNS Malware 140

Penetration Testing

FEBRUARY 19, 2024

A proof-of-concept (PoC) was disclosed for a severe design flaw (CVE-2023-50387) in Domain Name System Security Extensions (DNSSEC), leaving DNS infrastructures vulnerable to widespread denial-of-service (DoS) attacks.

DNS 136

DNS Penetration Testing 136

Penetration Testing

SEPTEMBER 7, 2024

The... The post MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections appeared first on Cybersecurity News.

DNS 136

DNS Cybersecurity 136

Security Affairs

DECEMBER 6, 2024

The getresetstatus vulnerability in CyberPanel (before commit 1c0c6cb ) affects dns/views.py “getresetstatus in dns/views.py “getresetstatus in dns/views.py and ftp/views.py. Attackers can manipulate the statusfile property with shell metacharacters. and ftp/views.py ” reads the advisory. . and ftp/views.py

DNS 109

DNS Authentication Ransomware Hacking 109

Security Affairs

FEBRUARY 12, 2024

ExpressVPN addressed a bug in the split tunneling feature that exposed the domains visited by the users to configured DNS servers. The expert noticed that the DNS queries were sent to the DNS server configured on the computer. Anyway, disabling the split tunneling feature will prevent the leak of the DNS requests.

DNS 136

DNS VPN Encryption Hacking 136

The Hacker News

APRIL 29, 2024

A previously undocumented cyber threat dubbed Muddling Meerkat has been observed undertaking sophisticated domain name system (DNS) activities in a likely effort to evade security measures and conduct reconnaissance of networks across the world since October 2019.

DNS 145

DNS Internet Internet Cyber threats 145

Krebs on Security

MARCH 9, 2021

For the second month in a row, Microsoft has patched scary flaws in the DNS servers on Windows Server 2008 through 2019 versions that could be used to remotely install software of the attacker’s choice. All five of the DNS bugs quashed in today’s patch batch earned a CVSS Score (danger metric) of 9.8 — almost as bad as it gets.

DNS 352

DNS Internet Internet Software 352