Get up-to-the-minute news and opinions, plus access to a wide assortment of IT security resources that will keep you current and informed.

Keep me logged in Forgot your password?

Please wait...

Please wait...

 DNS

Deadline looms to remove click-fraud malware

February 06, 2012

Many major businesses and government agencies still have systems infected with the DNSChanger malware, which reroutes the victim machine to websites and online advertisements of the attackers' choosing. That may mean they could lose web connectivity.
 

Security breaches impacting VeriSign emerge in filing

February 02, 2012

The company responsible for ensuring that users reach the website they intend to reach admitted in an SEC filing that its network was breached numerous times in 2010.
 

Senators change sides on SOPA/PIPA issue

January 18, 2012

Several senators today abandoned their support of two highly controversial anti-web piracy bills making their way through Congress.
 

SOPA could harm security on the internet

December 16, 2011

Experts warn the controversial anti-copyright bill, SOPA, would undermine efforts to bolster internet security through the implementation of DNSSEC.
 

Holiday folly for retailers with DNS glitches

Sean Leach, vice president of strategy, VeriSign Network Intelligence and Availability Group November 22, 2011

Proper DNS management by organizations is critical to protecting against threats and staying online during the busy holiday months.
 

VeriSign to operate .gov domain name registry

February 03, 2011

Internet infrastructure services provider VeriSign was selected to operate the nation's domain name registry for .gov, the U.S. General Services Administration announced on Thursday. VeriSign will provide domain name registration services to federal, state and local governments operating sites under the .gov and fed.us domain names, according to a news release. In addition, VeriSign will support the implementation of DNSSEC, a set of security extensions that provide authentication of DNS data and prevent against attacks such as cache poisoning, on .gov and fed.us. The majority of government sites use .gov domain names while fed.us is used by a number of agencies. - AM
 

DNSSEC adoption increasing, but still extremely low

December 06, 2010

Despite a recent upswing in the adoption of DNSSEC, the actual number of "zones" that have been signed for the protocol is still low, making most organizations vulnerable, according to a new survey.
 

Iranian Cyber Army shifts efforts toward malware, botnets

October 25, 2010

A hacker group responsible for defacement attacks against Twitter and Baidu now appears to be amassing a mighty botnet, according to researchers at a security firm.
 

Two remaining Comcast.net hijackers sentenced

September 27, 2010

The remaining two members of a cybergang implicated in a 2008 scheme that redirected visitors wishing to reach Comcast.net to websites of the hackers' choosing each have been sentenced to 18 months in federal prison. Christopher Lewis, 20, of Newark, Del. and Michael Nebel, 28, of Kalamazoo, Mich., who both pleaded guilty earlier this year, were sentenced Friday in U.S. District Court in Philadelphia. Last month, a co-conspirator, James Black, 21, of Tumwater, Wash., received four months in prison. Comcast lost $128,578 as a result of the prank, which prevented customers from retrieving their email, voicemail and other services. Instead, they reached sites created by the defendants to gloat of their ruse. — DK
 

Root zone signed for DNSSEC

July 20, 2010

DNSSEC, a set of security extensions that provide authentication of DNS data and prevent against attacks such as cache poisoning, has been enabled at the root zone — a major step toward widespread adoption of the technology, VeriSign has announced.DNSSEC uses digital, cryptographic signatures to protect against forged DNS data and ensures that the server to which a user believes they are connecting is the correct one.The root zone, comprised of 13 root servers, is the top zone on the DNS hierarchy and lists the names and IP addresses of the authoritative DNS servers for all top-level domains, such as .com, .org and .gov. — DK
 

Baidu suing registrar for negligence in cyberattack

January 21, 2010

Leading Chinese search engine Baidu, is suing Register.com, its U.S.-based web hosting provider, over a recent cyberattack that left the site unusable for several hours, according to published reports. On Jan. 12, Baidu visitors were redirected to a page announcing that the site had been overtaken by the Iranian Cyber Army. On Wednesday in a Manhattan federal court, Baidu filed a complaint against Register.com claiming that negligence by the company resulted in severe damage to the search giant. A Register.com spokesperson reportedly has said the lawsuit is "without merit." A representative could not be reached by SCMagazineUS.com. — AM
 

Twitter hackers compromise Chinese search engine

January 12, 2010

The same band of hackers responsible for the DNS records hijack of Twitter last month launched an apparent similar attack on leading Chinese search engine Baidu, according to published reports. For several hours on Monday night EST, visitors to the site were redirected to a page announcing that the site had been overtaken by the Iranian Cyber Army. Baidu blamed the problem on an "external manipulation" of its domain name server in the United States. The site was operating normally on Tuesday. It is unclear what the motive of the attack was. — DK
 

Twitter attributes outage to DNS records hack

December 18, 2009

Twitter blamed Thursday's outage on a compromise of its DNS records. Users trying to visit the microblogging site were greeted with a message that the "Iranian Cyber Army" had hacked Twitter, reports said. Twitter also experienced "timeline delays and missing Tweets," though its third-party applications remained functioning normally, according to its Status and company blog. The company said it was looking into the cause of the downtime and would provide more information soon. The site is now working properly. In August, the site was knocked offline for several hours due to a denial-of-service attack. — DK
 
Popular Topics
4G-war Advanced Persistent Threat Adware AMTSO Anonymous Botnets Cyber Attacks Cyber Crime Data Breach Data Breaches Encryption Hackers Hacktivism Health Care IT Security Java Malware Mobile Devices Phishing Risk Management Social Security Numbers Stolen Information Survey Trojans Vulnerabilities & Flaws