DNS - Cyber Security Informer

MasterCard DNS Error Went Unnoticed for Years

Krebs on Security

JANUARY 22, 2025

A DNS lookup on the domain az.mastercard.com on Jan. MasterCard.com relies on five shared Domain Name System (DNS) servers at the Internet infrastructure provider Akamai [DNS acts as a kind of Internet phone book, by translating website names to numeric Internet addresses that are easier for computers to manage].

DNS

DNS Internet Internet Risk

Oblivious DNS-over-HTTPS

Schneier on Security

DECEMBER 8, 2020

This new protocol , called Oblivious DNS-over-HTTPS (ODoH), hides the websites you visit from your ISP. Here’s how it works: ODoH wraps a layer of encryption around the DNS query and passes it through a proxy server, which acts as a go-between the internet user and the website they want to visit. Slashdot thread.

DNS

DNS Encryption Internet Internet

MikroTik botnet relies on DNS misconfiguration to spread malware

Security Affairs

JANUARY 16, 2025

Researchers discovered a 13,000-device MikroTik botnet exploiting DNS flaws to spoof 20,000 domains and deliver malware. Infoblox researchers discovered a botnet of 13,000 MikroTik devices that exploits DNS misconfigurations to bypass email protections, spoof approximately 20,000 domains, and deliver malware.

DNS

DNS Malware Firmware Authentication

Zero-Trust DNS

Schneier on Security

MAY 16, 2024

Microsoft is working on a promising-looking protocol to lock down DNS. ZTDNS aims to solve this decades-old problem by integrating the Windows DNS engine with the Windows Filtering Platform—the core component of the Windows Firewall—directly into client devices.

DNS

DNS Firewall Engineering Network Security

Joint Advisory Warns of Fast Flux DNS Tactics Evading Detection

SecureWorld News

APRIL 8, 2025

Fast flux is a method used by cybercriminals to rapidly change Domain Name System (DNS) records, such as IP addresses, associated with a single domain. Double flux: In addition to rotating IP addresses, the DNS name servers resolving the domain also change frequently, adding layers of redundancy and anonymity. Fast flux DNS is not new.

DNS

DNS Government Cybersecurity Malware

Firefox Enables DNS over HTTPS

Schneier on Security

FEBRUARY 25, 2020

This is good news : Whenever you visit a website -- even if it's HTTPS enabled -- the DNS query that converts the web address into an IP address that computers can read is usually unencrypted. DNS-over-HTTPS, or DoH, encrypts the request so that it can't be intercepted or hijacked in order to send a user to a malicious site. [.].

DNS

DNS Internet Internet Encryption

New DNS Hijacking Attacks

Schneier on Security

APRIL 18, 2019

DNS hijacking isn't new, but this seems to be an attack of uprecidented scale: Researchers at Cisco's Talos security division on Wednesday revealed that a hacker group it's calling Sea Turtle carried out a broad campaign of espionage via DNS hijacking, hitting 40 different organizations.

DNS

DNS Internet Internet Risk

Morphing Meerkat phishing kits exploit DNS MX records

Security Affairs

MARCH 31, 2025

Morphing Meerkat phishing kits exploit DNS MX records to deliver spoofed login pages, targeting over 100 brands. Threat actors are exploiting DNS techniques to enhance phishing attacks, using MX records to dynamically serve spoofed login pages. By July 2023 kits could dynamically load phishing pages based on DNS MX records.

DNS

DNS Phishing Banking Hacking

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

” The DNS part of that moniker refers to the global “ D omain N ame S ystem ,” which serves as a kind of phone book for the Internet by translating human-friendly Web site names (example.com) into numeric Internet address that are easier for computers to manage. PASSIVE DNS.

DNS

DNS Internet Internet Government

CoreDNS DoS Flaw: Unauthenticated Attackers Can Crash Servers via DNS-over-QUIC

Penetration Testing

JUNE 10, 2025

A DoS flaw in CoreDNS (CVE-2025-47950) allows unauthenticated attackers to crash servers using DNS-over-QUIC. Update to 1.12.2 immediately or disable QUIC.

DNS

DNS Cybersecurity

Critical Vulnerability (CVE-2025-31498) Patched in c-ares DNS Library

Penetration Testing

APRIL 10, 2025

The Domain Name System (DNS) plays a pivotal role, translating human-friendly domain names into the numerical IP addresses that computers understand. And at the heart of many applications facilitating this translation lies c-ares, a robust, asynchronous DNS resolver library.

DNS

DNS Cybersecurity Network Security

Increasing Awareness of DNS Hijacking: A Growing Cyber Threat

Tech Republic Security

NOVEMBER 6, 2024

DNS hijacking is a growing threat that can redirect users to malicious sites. However, using passive DNS monitoring can help to protect data.

DNS

DNS Cyber threats

Largest DDoS Attack to Date

Schneier on Security

JUNE 23, 2025

Legitimate UDP-based transmissions are used in especially time-sensitive communications, such as those for video playback, gaming applications, and DNS lookups. It was a recently unimaginable 7.3 Tbps : The vast majority of the attack was delivered in the form of User Datagram Protocol packets.

DDOS

DDOS DNS Internet Internet

Introducing Secure Access – DNS Defense

Cisco Security

MAY 29, 2025

Cisco Secure Access - DNS Defense is a seamless pathway to our Universal ZTNA solution. Learn how it works in the blog.

DNS

Why DNS Security Is Your First Defense Against Cyber Attacks?

The Hacker News

JUNE 11, 2025

While these tools are essential, one critical layer often goes overlooked: the Domain Name System (DNS). As the starting point of nearly every online interaction, DNS is not only foundational - it’s increasingly a target. When left unsecured, it becomes a single point of

DNS

DNS Cyber Attacks Antivirus Firewall

RSAC Fireside Chat: ‘Protective DNS’ directs smart audits, automated remediation to IP addresses

The Last Watchdog

APRIL 18, 2023

Related: DNS — the good, bad and ugly Without DNS the World Wide Web never would never have advanced as far and wide as it has. However, due to its intrinsic openness and anonymity DNS has also become engrained as the primary communications mechanism used by cyber criminals and cyber warfare combatants.

DNS

DNS Internet Internet Cybersecurity

Multi-cloud Strategies Making DDI and DNS Cumbersome to Manage

Tech Republic Security

OCTOBER 7, 2024

DNS and IP address management is getting harder as multi-cloud strategies take over in Australia and the APAC region.

DNS

Keep Web Traffic Streamlined and Safe With This $29.99 DNS

Tech Republic Security

NOVEMBER 27, 2023

With AdGuard DNS, you can block ads, customize parental controls and keep tabs on DNS requests coming in or out — all for the lowest price on the web.

DNS

DNS Security

Adam Shostack

JANUARY 2, 2025

They asked us to look at the value of DNS security, such as when your DNS provider uses threat intel to block malicious sites. Just point to a DNS server like 9.9.9.9). The report is available from GCA's site: Learn About How DNS Security Can Mitigate One-Third of Cyber Incidents

DNS

Don’t Let Your Domain Name Become a “Sitting Duck”

Krebs on Security

JULY 31, 2024

Your Web browser knows how to find a site like example.com thanks to the global Domain Name System (DNS), which serves as a kind of phone book for the Internet by translating human-friendly website names (example.com) into numeric Internet addresses. And the bulk of these are at a handful of DNS providers.”

DNS

DNS Internet Internet Phishing

DNS Rebind Protection Revisited

Security Boulevard

JUNE 13, 2025

After this week’s attention to META and Yandex localhost abuses, it is time to revisit a core feature/option of protective DNS that offers a feel-good moment to those that applied this safety technique long before this abuse report came about. Most modern DNS servers offer DNS Rebind Protection; some are on by default, some include 127.0.0.0/8

DNS

DNS Internet Internet Software

Heimdal Awarded Patent for Predictive DNS™ Technology

Heimadal Security

APRIL 23, 2025

This milestone reinforces Heimdals position at the forefront of DNS security. The patent, titled Apparatus and Method of Predicting […] The post Heimdal Awarded Patent for Predictive DNS Technology appeared first on Heimdal Security Blog.

DNS

DNS Technology Cybersecurity

How to turn on Android's Private DNS mode - and why it's an absolute must for security

Zero Day

JUNE 23, 2025

Unencrypted DNS queries can expose your browsing activity, but you can use Private DNS Mode on Android to keep them safe from prying eyes. Here's how.

DNS

Report: Recent 10x Increase in Cyberattacks on Ukraine

Krebs on Security

MARCH 11, 2022

John Todd is general manager of Quad9 , a free “anycast” DNS platform. DNS stands for Domain Name System, which is like a globally distributed phone book for the Internet that maps human-friendly website names (example.com) to numeric Internet addresses (8.8.4.4.) that are easier for computers to manage.

DNS

DNS Internet Internet Phishing

Trial Ends in Guilty Verdict for DDoS-for-Hire Boss

Krebs on Security

SEPTEMBER 16, 2021

In such assaults, the perpetrators leverage unmanaged Domain Name Servers (DNS) or other devices on the Web to create huge traffic floods. Ideally, DNS servers only provide services to machines within a trusted domain — such as translating an Internet address from a series of numbers into a domain name, like example.com.

DDOS

DDOS DNS Internet Internet

Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices

Security Affairs

NOVEMBER 14, 2024

The vulnerability CVE-2024-10914 is a command injection issue that impacts D-Link DNS-320 , DNS-320LW, DNS-325 and DNS-340L up to 20241028. “A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been declared as critical. cmd=cgi_user_add.

DNS

DNS Internet Internet Hacking

Palo Alto Networks fixed a high-severity PAN-OS flaw

Security Affairs

DECEMBER 27, 2024

“A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. The vulnerability can be exploited only if DNS Security logging is enabled. h8, 10.2.10-h12,

DNS

DNS Firewall Spyware Software

LDAPNightmare, a PoC exploit targets Windows LDAP flaw CVE-2024-49113

Security Affairs

JANUARY 3, 2025

. “SafeBreach Labs developed a proof of concept exploit for CVE-2024-49113 that crashes any unpatched Windows Server (not just DCs) with no pre-requisites except that the DNS server of the victim DC has Internet connectivity.” ” states the report published by SafeBreach.

DNS

DNS Internet Internet Hacking

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall

Security Affairs

MAY 1, 2024

The China-linked threat actors Muddling Meerkat are manipulating DNS to probe networks globally since 2019. Infoblox researchers observed China-linked threat actors Muddling Meerkat using sophisticated DNS activities since 2019 to bypass traditional security measures and probe networks worldwide. ” concludes the report.

DNS

DNS Firewall DDOS Hacking

Apple Will Offer Onion Routing for iCloud/Safari Users

Schneier on Security

JUNE 22, 2021

Those are your IP address (who and exactly where you are) and your DNS request (the address of the website you want, in numeric form). Once the two pieces of information are split, Private Relay encrypts your DNS request and sends both the IP address and now-encrypted DNS request to an Apple proxy server.

DNS

DNS Encryption

DNSBomb: New DDoS Attack Explodes DNS Traffic, Threatening Critical Internet Infrastructure

Penetration Testing

MAY 23, 2024

This innovative attack weaponizes DNS (Domain Name System) traffic to overwhelm and disrupt online services,... The post DNSBomb: New DDoS Attack Explodes DNS Traffic, Threatening Critical Internet Infrastructure appeared first on Penetration Testing.

DNS

DNS DDOS Internet Internet

RSAC Fireside Chat: Rich threat intel, specialized graph database fuel HYAS’ Protective DNS

The Last Watchdog

MAY 29, 2024

Related: Selecting a Protective DNS One smart way to do this is by keeping an eagle eye out for rogue command and control (C2) server communications. And this beaconing must intersect with the Domain Name System (DNS.) DNS security and the overall Protective DNS space is rising in importance.

DNS

DNS Cyber Insurance Insurance Internet

BIND updates fix four high-severity DoS bugs in the DNS software suite

Security Affairs

JULY 26, 2024

The Internet Systems Consortium (ISC) released BIND security updates that fixed several remotely exploitable DoS bugs in the DNS software suite. An attacker can exploit these vulnerabilities to disrupt DNS services. ISC addressed four high-severity vulnerabilities (CVSS score of 7.5) In BIND 9 versions 9.18.1 through 9.18.27, 9.19.0

DNS

DNS Software Internet Internet

Crooks Continue to Exploit GoDaddy Hole

Krebs on Security

FEBRUARY 4, 2019

Spammy Bear targeted dormant but otherwise legitimate domains that had one thing in common: They all at one time used GoDaddy’s hosted Domain Name System (DNS) service. The domains documented by MyOnlineSecurity all had their DNS records altered between Jan. 31 and Feb. 22 report on the GoDaddy weakness. Image: Farsight Security.

DNS

DNS Ransomware Accountability Internet

Cloudflare’s 1.1.1.1 DNS Service Disrupted by BGP Hijacking and Route Leak

Penetration Testing

JULY 5, 2024

public DNS resolver service experienced disruptions, leaving a small percentage of users worldwide unable to access the service or facing significant latency issues. DNS Service Disrupted by BGP Hijacking and Route Leak appeared first on Cybersecurity News. On June 27, 2024, Cloudflare’s popular 1.1.1.1

DNS

DNS Cybersecurity

U.S. CISA adds CyberPanel flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

DECEMBER 6, 2024

The getresetstatus vulnerability in CyberPanel (before commit 1c0c6cb ) affects dns/views.py “getresetstatus in dns/views.py “getresetstatus in dns/views.py and ftp/views.py. Attackers can manipulate the statusfile property with shell metacharacters. and ftp/views.py ” reads the advisory. . and ftp/views.py

DNS

DNS Authentication Ransomware Hacking

ExpressVPN bug has been leaking some DNS requests for years

Bleeping Computer

FEBRUARY 11, 2024

ExpressVPN has removed the split tunneling feature from the latest version of its software after finding that a bug exposed the domains users were visiting to configured DNS servers. [.]

DNS

DNS Software

Microsoft Patch Tuesday, March 2021 Edition

Krebs on Security

MARCH 9, 2021

For the second month in a row, Microsoft has patched scary flaws in the DNS servers on Windows Server 2008 through 2019 versions that could be used to remotely install software of the attacker’s choice. All five of the DNS bugs quashed in today’s patch batch earned a CVSS Score (danger metric) of 9.8 — almost as bad as it gets.

DNS

DNS Internet Internet Software

“KeyTrap” (CVE-2023-50387) Flaw Leaves DNS Systems Vulnerable, PoC Published

Penetration Testing

FEBRUARY 19, 2024

A proof-of-concept (PoC) was disclosed for a severe design flaw (CVE-2023-50387) in Domain Name System Security Extensions (DNSSEC), leaving DNS infrastructures vulnerable to widespread denial-of-service (DoS) attacks.

DNS

DNS Penetration Testing

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

Krebs on Security

SEPTEMBER 18, 2024

According to DomainTools.com , the organization that registered this domain is called “ apkdownloadweb ,” is based in Rajshahi, Bangladesh, and uses the DNS servers of a Web hosting company in Bangladesh called webhostbd[.]net. net for DNS. net DNS servers). xyz and onlinestreaming[.]xyz. Livestreamnow[.]xyz

Scams

Scams DNS Internet Internet

Does Your Domain Have a Registry Lock?

Krebs on Security

JANUARY 24, 2020

13, 2020, which was the date the fraudsters got around to changing the domain name system (DNS) settings for e-hawk.net. That alert was triggered by systems E-HAWK had previously built in-house that continually monitor their stable of domains for any DNS changes. Dijkxhoorn said his company first learned of the domain theft on Jan.

DNS

DNS Social Engineering Engineering Accountability

MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections

Penetration Testing

SEPTEMBER 7, 2024

The... The post MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections appeared first on Cybersecurity News.

DNS

DNS Cybersecurity

ExpressVPN leaked DNS requests due to a bug in the split tunneling feature

Security Affairs

FEBRUARY 12, 2024

ExpressVPN addressed a bug in the split tunneling feature that exposed the domains visited by the users to configured DNS servers. The expert noticed that the DNS queries were sent to the DNS server configured on the computer. Anyway, disabling the split tunneling feature will prevent the leak of the DNS requests.

DNS

DNS VPN Encryption Hacking

Cybercriminals Using Novel DNS Hijacking Technique for Investment Scams

The Hacker News

MARCH 5, 2024

A new DNS threat actor dubbed Savvy Seahorse is leveraging sophisticated techniques to entice targets into fake investment platforms and steal funds.

DNS

DNS Scams Banking Accountability

MasterCard DNS Error Went Unnoticed for Years

Oblivious DNS-over-HTTPS

Trending Sources

MikroTik botnet relies on DNS misconfiguration to spread malware

Zero-Trust DNS

Joint Advisory Warns of Fast Flux DNS Tactics Evading Detection

Firefox Enables DNS over HTTPS

New DNS Hijacking Attacks

Morphing Meerkat phishing kits exploit DNS MX records

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

CoreDNS DoS Flaw: Unauthenticated Attackers Can Crash Servers via DNS-over-QUIC

Critical Vulnerability (CVE-2025-31498) Patched in c-ares DNS Library

Increasing Awareness of DNS Hijacking: A Growing Cyber Threat

Largest DDoS Attack to Date

Introducing Secure Access – DNS Defense

Why DNS Security Is Your First Defense Against Cyber Attacks?

RSAC Fireside Chat: ‘Protective DNS’ directs smart audits, automated remediation to IP addresses

Multi-cloud Strategies Making DDI and DNS Cumbersome to Manage

Keep Web Traffic Streamlined and Safe With This $29.99 DNS

DNS Security

Don’t Let Your Domain Name Become a “Sitting Duck”

DNS Rebind Protection Revisited

Heimdal Awarded Patent for Predictive DNS™ Technology

How to turn on Android's Private DNS mode - and why it's an absolute must for security

Report: Recent 10x Increase in Cyberattacks on Ukraine

Trial Ends in Guilty Verdict for DDoS-for-Hire Boss

Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices

Palo Alto Networks fixed a high-severity PAN-OS flaw

LDAPNightmare, a PoC exploit targets Windows LDAP flaw CVE-2024-49113

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall

Apple Will Offer Onion Routing for iCloud/Safari Users

DNSBomb: New DDoS Attack Explodes DNS Traffic, Threatening Critical Internet Infrastructure

RSAC Fireside Chat: Rich threat intel, specialized graph database fuel HYAS’ Protective DNS

BIND updates fix four high-severity DoS bugs in the DNS software suite

Crooks Continue to Exploit GoDaddy Hole

Cloudflare’s 1.1.1.1 DNS Service Disrupted by BGP Hijacking and Route Leak

U.S. CISA adds CyberPanel flaw to its Known Exploited Vulnerabilities catalog

ExpressVPN bug has been leaking some DNS requests for years

Microsoft Patch Tuesday, March 2021 Edition

“KeyTrap” (CVE-2023-50387) Flaw Leaves DNS Systems Vulnerable, PoC Published

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

Does Your Domain Have a Registry Lock?

MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections

ExpressVPN leaked DNS requests due to a bug in the split tunneling feature

Cybercriminals Using Novel DNS Hijacking Technique for Investment Scams

Stay Connected