#dnssecurity — Public Fediverse posts

Numerologie in Domainnamen: Wie eine ungewöhnliche Basis-5-Kodierung drei Malware-Kampagnen als eine entlarvt

Wer Domains in großem Umfang registriert, hinterlässt Spuren – in der Infrastruktur, im verwendeten Vokabular, aber vor allem in den Zahlen.

https://www.all-about-security.de/numerologie-in-domainnamen-wie-eine-ungewoehnliche-basis-5-kodierung-drei-malware-kampagnen-als-eine-entlarvt/

#dns #DNSsecurity #malware #itsecurity #itsicherheit #cybersecurity #cybersicherheit

Numerologie in Domainnamen: Wie eine ungewöhnliche Basis-5-Kodierung drei Malware-Kampagnen als eine entlarvt

Wer Domains in großem Umfang registriert, hinterlässt Spuren – in der Infrastruktur, im verwendeten Vokabular, aber vor allem in den Zahlen.

https://www.all-about-security.de/numerologie-in-domainnamen-wie-eine-ungewoehnliche-basis-5-kodierung-drei-malware-kampagnen-als-eine-entlarvt/

#dns #DNSsecurity #malware #itsecurity #itsicherheit #cybersecurity #cybersicherheit

DNS-Ausfall legt 17,7 Millionen .de-Domains lahm

Ursache war keine externe Attacke, sondern eine technische Störung im DNS-Dienst der DENIC eG, der in Frankfurt ansässigen Genossenschaft, die Deutschlands nationale Top-Level-Domain .de verwaltet. Die Registrierungsstelle bestätigte das Problem unmittelbar nach Bekanntwerden.

https://www.all-about-security.de/dns-ausfall-legt-177-millionen-de-domains-lahm/

#denic #DNS #DNSsecurity #cybersecurity #itsicherheit

DNS-Hijacking durch Forest Blizzard: Wie Heimrouter zur Spionageinfrastruktur werden

Microsoft Threat Intelligence identifizierte dabei über 200 betroffene Organisationen sowie rund 5.000 kompromittierte Endgeräte – und warnt, dass die eigentliche Unternehmensinfrastruktur dabei gar nicht direkt angegriffen werden muss.

https://www.all-about-security.de/dns-hijacking-durch-forest-blizzard-wie-heimrouter-zur-spionageinfrastruktur-werden/

#soho #DNS #dnssecurity #router #DHCP

NIST SP 800-81r3: Was das neue DNS-Sicherheits-Framework für Unternehmen bedeutet

Die Neufassung schließt eine jahrelange Lücke zwischen dem Stand der DNS-Technologie und den geltenden Empfehlungen – und stellt DNS erstmals klar als strategische Steuerungsebene moderner IT-Sicherheitsarchitekturen dar. Für Unternehmen, Behörden und IT-Verantwortliche ist die Publikation mehr als ein technisches Update

https://www.all-about-security.de/nist-sp-800-81r3-was-das-neue-dns-sicherheits-framework-fuer-unternehmen-bedeutet/

#nist #framework #dns #dnssecurity #itsecurity #cybersecurity

Hatte gedacht, installiere mal #pihole , andere deinen dns, und schau wie Werbung auf dem Handy geblockt wird. Pustekuchen, #ipv6 , #dnscache #chrome interner dns cache, #dnssecurity ... Die Installation von pihole war ein klaks, aber an allen Endgeräten und Router die Einstellungen so zu verbiegen dass pihole auch greifen kann dauert mir zu lange.
#internetistkaputt

Hatte gedacht, installiere mal #pihole , andere deinen dns, und schau wie Werbung auf dem Handy geblockt wird. Pustekuchen, #ipv6 , #dnscache #chrome interner dns cache, #dnssecurity ... Die Installation von pihole war ein klaks, aber an allen Endgeräten und Router die Einstellungen so zu verbiegen dass pihole auch greifen kann dauert mir zu lange.
#internetistkaputt

Hatte gedacht, installiere mal #pihole , andere deinen dns, und schau wie Werbung auf dem Handy geblockt wird. Pustekuchen, #ipv6 , #dnscache #chrome interner dns cache, #dnssecurity ... Die Installation von pihole war ein klaks, aber an allen Endgeräten und Router die Einstellungen so zu verbiegen dass pihole auch greifen kann dauert mir zu lange.
#internetistkaputt

Bevor es falsch ankommt: das ist keine Kritik an pihole, es macht genau das was es soll.

Hatte gedacht, installiere mal #pihole , andere deinen dns, und schau wie Werbung auf dem Handy geblockt wird. Pustekuchen, #ipv6 , #dnscache #chrome interner dns cache, #dnssecurity ... Die Installation von pihole war ein klaks, aber an allen Endgeräten und Router die Einstellungen so zu verbiegen dass pihole auch greifen kann dauert mir zu lange.
#internetistkaputt

Hatte gedacht, installiere mal #pihole , andere deinen dns, und schau wie Werbung auf dem Handy geblockt wird. Pustekuchen, #ipv6 , #dnscache #chrome interner dns cache, #dnssecurity ... Die Installation von pihole war ein klaks, aber an allen Endgeräten und Router die Einstellungen so zu verbiegen dass pihole auch greifen kann dauert mir zu lange.
#internetistkaputt

Schatten-DNS-Netzwerk nutzt kompromittierte Router für verdeckte Werbeumleitung

Sicherheitsexperten haben ein ausgeklügeltes System entdeckt, das die DNS-Einstellungen von Routern manipuliert und Nutzer unbemerkt auf andere Websites umleitet.

https://www.all-about-security.de/schatten-dns-netzwerk-nutzt-kompromittierte-router-fuer-verdeckte-werbeumleitung/

#dnssecurity #dns #router #netzwerksicherheit #netzwerk

Secure your online presence with expert DNS protection - no shadow required! 😉 Skip the groundhog's guess and get guaranteed DNS reliability!

DNSimple offers multi-layered DDoS defense and Anycast DNS across 200,000 managed domains.

#DNSSecurity #ReliableDNS #DNS #DevOps

🚨 Banks and insurance firms: Still on .com? You're missing out on instant trust and security with .BANK or .INSURANCE domains. These restricted TLDs signal security & legitimacy. Overwhelmed by requirements? DNSimple supports all security and compliance requirements, including #DNSSEC, #SSL, #MFA, real‑time #DDoS protection, vanity name servers, and expert support.
Claim your .BANK or .INSURANCE domain today!
Watch https://youtu.be/4dTbaSiag3s

#BankDomain #InsuranceDomain #DNSSecurity

🔐 Keep your domains safe and compliant. Whether you're managing a personal site or handling thousands of domains for a large corporation, DNSimple gives you access to the latest CAA record features to help keep your domains safe and compliant, more details in our blog https://blog.dnsimple.com/2025/05/new-caa-record-tags/

#dns #dnssecurity #SSL #CAA #certificatmanagement

🔐 Protect your domains from DNS takeover attacks with DNSimple’s new zone verification process. Discover how DNSimple’s zone verification feature adds an extra layer of protection against DNS takeover attacks making your domains safer than ever! Contact us for more details or read our blog 👉 https://blog.dnsimple.com/2025/05/zone-verification/
#dns #dnssecurity #domainmanagement #cybersecurity

NextDNS Privacy Explained: Protect Your Online Security

https://beitmenotyou.online/nextdns-privacy-guide/

#PrivacySafty #AdBlocking #CyberSecurity #DataProtection #DigitalSafety #DnsEncryption #DnsFirewall #DnsOverHttps #DnsOverTls #DnsSecurity #EncryptedDns #InternetSecurity #nextdns #NextdnsPrivacy #OnlineAnonymity #OnlinePrivacy #PrivacyProtection #PrivacyTools #SafeInternet #SecureBrowsing #TrackerBlocking

NextDNS Privacy Explained: Protect Your Online Security

https://beitmenotyou.online/nextdns-privacy-guide/

Schade, dass so etwas heute noch ein Angriffsszenario darstellen kann: "Hackers Can Hide Images in Text Data and Embeds Directly into DNS TXT Records". Zeit für #DNSSecurity & #ProtectiveDNS

https://cybersecuritynews.com/hiding-images-in-dns-txt-records/

Schade, dass so etwas heute noch ein Angriffsszenario darstellen kann: "Hackers Can Hide Images in Text Data and Embeds Directly into DNS TXT Records". Zeit für #DNSSecurity & #ProtectiveDNS

https://cybersecuritynews.com/hiding-images-in-dns-txt-records/

Schade, dass so etwas heute noch ein Angriffsszenario darstellen kann: "Hackers Can Hide Images in Text Data and Embeds Directly into DNS TXT Records". Zeit für #DNSSecurity & #ProtectiveDNS

https://cybersecuritynews.com/hiding-images-in-dns-txt-records/

Of course it's DNS. 🤦🏻‍♂️ Attackers are turning DNS into a malware delivery pipeline. Instead of dropping files via email or sketchy links, they’re hiding payloads in DNS TXT records and reassembling them from a series of innocuous-looking queries. DOH and DOT make this even harder to monitor. DNS has always been a bit of a blind spot for defenders, and this technique exploits that perfectly. Also, yes, prompt injection payloads are now showing up in DNS records too. 🤬

TL;DR
⚠️ Malware stored in DNS TXT records
🧠 Chunked, hex-encoded, reassembled
🔐 DOH/DOT encrypt lookup behavior
🪄 Prompt injection payloads spotted too

https://arstechnica.com/security/2025/07/hackers-exploit-a-blind-spot-by-hiding-malware-inside-dns-records/
#infosec #dnssecurity #malware #promptinjection #security #privacy #cloud #infosec #cybersecurity

Morphing Meerkat: A Sophisticated Phishing-as-a-Service Threat

https://thedefendopsdiaries.com/morphing-meerkat-a-sophisticated-phishing-as-a-service-threat/

#phishingasaservice
#cybersecurity
#dnssecurity
#morphingmeerkat
#advancedthreats

Morphing Meerkat: A Sophisticated Phishing-as-a-Service Threat

https://thedefendopsdiaries.com/morphing-meerkat-a-sophisticated-phishing-as-a-service-threat/

#phishingasaservice
#cybersecurity
#dnssecurity
#morphingmeerkat
#advancedthreats

Skip the groundhog's guess and get guaranteed DNS reliability! 🛡️ DNSimple offers multi-layered DDoS defense and Anycast DNS across 200,000 managed domains. Secure your online presence with expert DNS protection - no shadow required! #DNSSecurity #ReliableDNS #DNS #DevOps

With visibility into 97% of the Internet and billions of analyzed DNS records, DTI brings unprecedented insight into domain-based threats.

Led by industry veteran @danonsecurity, our team delivers actionable intelligence to protect your organization.

https://dti.domaintools.com/

#DNSsecurity #threatintelligence

Hello everyone.
In today's article we are examining dns security Importance and Tools

I wish everyone a good reading:
https://denizhalil.com/2025/01/02/what-is-dns-security-importance-and-tools/

#cybersecurity #dnssecurity #networksecurity #onlinesafety #securitytools #dnshijacking #internetsecurity

Hello everyone.

In today's article, we will examine in detail what is dns and how it works.

I wish everyone a good reading:
https://denizhalil.com/2023/07/04/what-is-dns-an-overview-of-the-domain-name-system/

#dns #domainnamesystem #networksecurity #dnssecurity #dnsrecords #dnsconfiguration

Hello everyone.

In today's article, we will examine in detail what is dns and how it works.

I wish everyone a good reading:
https://denizhalil.com/2023/07/04/what-is-dns-an-overview-of-the-domain-name-system/

#dns #domainnamesystem #networksecurity #dnssecurity #dnsrecords #dnsconfiguration

Just 7 yrs ago, we set out to offer a free, global, #privacy-preserving #DNSsecurity service, including reach into traditionally underserved regions with the dedication of a strong team and generous support of many partners, sponsors, friends, supporters, and donors. Happy Anniversary to the entire Quad9 community!

Hello everyone.
In today's article we learn in detail how to do dns enumeration with python.

I wish everyone good work
https://denizhalil.com/2024/10/30/python-dns-enumeration-tool/

#python #pythonprogramming #dns #dnssecurity #ethicalhacking #dnsenumeration

This #CyberSecurityAwarenessMonth, boost your DNS security knowledge with 10 DNS Best Practices to Keep Your Domain Reputation in Check!

👉 Start here: https://www.spamhaus.org/resource-hub/dns/10-dns-best-practices-to-keep-your-domain-reputation-in-check/

#DNSsecurity isn’t just a nice-to-have - it’s a must-have!

💡"Policy can be a game-changer. It doesn’t just make managing your portfolio smoother and more cost-effective; it can also strengthen security and minimize the scope of compromised accounts, domains and DNS."  

In this article, Prudence Malinki, Head of Industry Relations at Markmonitor, shares insights on the significance of policy in DNS security, including what you need to consider and its effective management.

Learn more 👇
https://www.spamhaus.org/resource-hub/dns/the-secret-to-secure-dns-its-all-in-the-policies/#the-secret-to-secure-dns-it's-all-in-the-policies

#BestPractice #Policy #DNSSecurity

What is DNS security and why is it important? 🔐🤔 Our latest article talks about 6 DNS attack types and how you can prevent them. 🙌

🎯 When malicious actors target your DNS, a successful attack can lead to downtime or a data breach. 😧 So, to mitigate risk you should implement some DNS #security best practices, which include knowing what logs help you monitor for and detect a potential incident.

Learn about the ins and outs of DNS logging best practices for improved security, correlating DNS log events, and more.💡
https://graylog.info/4cK3hfm #DNSsecurity #cybersecurity

Hey everyone,

here is a short article about dns security with pyshark, if you wish you can write your comments in the comments section

https://denizhalil.com/2024/08/14/dns-security-tool-python-ddos-dos-detection/

#cybersecurity #dnssecurity #python #networkprogramming #pyshark

Hey everyone,

here is a short article about dns security with pyshark, if you wish you can write your comments in the comments section

https://denizhalil.com/2024/08/14/dns-security-tool-python-ddos-dos-detection/

#cybersecurity #dnssecurity #python #networkprogramming #pyshark

Hey everyone,

here is a short article about dns security with pyshark, if you wish you can write your comments in the comments section

https://denizhalil.com/2024/08/14/dns-security-tool-python-ddos-dos-detection/

#cybersecurity #dnssecurity #python #networkprogramming #pyshark

Sitting Ducks DNS Attack Hijack 35,000 Domains https://cybersecuritynews.com/sitting-ducks/ #CyberSecurityNews #DomainHijacking #CyberAttack #DNSSecurity #DNSAttacks

did _not_ install MTA-STS today, as it's a mere quick-fix for mail domains that don't have DNSSEC yet. But I did install TLSRPT on my DNSSEC & DANE enabled domains. First (empty, cause everything is fine) reports from Google are coming in 👍

#DNSSEC #DANE #TLSRPT #DNSsecurity #InternetSecurity

did _not_ install MTA-STS today, as it's a mere quick-fix for mail domains that don't have DNSSEC yet. But I did install TLSRPT on my DNSSEC & DANE enabled domains. First (empty, cause everything is fine) reports from Google are coming in 👍

#DNSSEC #DANE #TLSRPT #DNSsecurity #InternetSecurity

did _not_ install MTA-STS today, as it's a mere quick-fix for mail domains that don't have DNSSEC yet. But I did install TLSRPT on my DNSSEC & DANE enabled domains. First (empty, cause everything is fine) reports from Google are coming in 👍

#DNSSEC #DANE #TLSRPT #DNSsecurity #InternetSecurity

The tool I wrote captures DNS requests by listening to network traffic and displays information about destination IP addresses or target domains sent by the client.

for more join our discord server

https://discord.gg/productionbrain

#ethicalhacker #python #networksecurity #ethicalhacking #pythonprogrammer #python #dnssecurity

The tool I wrote captures DNS requests by listening to network traffic and displays information about destination IP addresses or target domains sent by the client.

for more join our discord server

https://discord.gg/productionbrain

#ethicalhacker #python #networksecurity #ethicalhacking #pythonprogrammer #python #dnssecurity

The tool I wrote captures DNS requests by listening to network traffic and displays information about destination IP addresses or target domains sent by the client.

for more join our discord server

https://discord.gg/productionbrain

#ethicalhacker #python #networksecurity #ethicalhacking #pythonprogrammer #python #dnssecurity

The tool I wrote captures DNS requests by listening to network traffic and displays information about destination IP addresses or target domains sent by the client.

for more join our discord server

https://discord.gg/productionbrain

#ethicalhacker #python #networksecurity #ethicalhacking #pythonprogrammer #python #dnssecurity

The tool I wrote captures DNS requests by listening to network traffic and displays information about destination IP addresses or target domains sent by the client.

for more join our discord server

https://discord.gg/productionbrain

#ethicalhacker #python #networksecurity #ethicalhacking #pythonprogrammer #python #dnssecurity

Unit42: Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government https://unit42.paloaltonetworks.com/rare-possible-gelsemium-attack-targets-se-asia/ #BehavioralThreatProtection #AdvancedURLFiltering #ChinaChopper #threatactors #CL-STA-0046 #CortexXSIAM #DNSsecurity #Government #CortexXDR #Gelsemium #webshells #backdoor #WildFire #APT

Unit42: Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government https://unit42.paloaltonetworks.com/rare-possible-gelsemium-attack-targets-se-asia/ #BehavioralThreatProtection #AdvancedURLFiltering #ChinaChopper #threatactors #CL-STA-0046 #CortexXSIAM #DNSsecurity #Government #CortexXDR #Gelsemium #webshells #backdoor #WildFire #APT

Unit42: Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government https://unit42.paloaltonetworks.com/rare-possible-gelsemium-attack-targets-se-asia/ #BehavioralThreatProtection #AdvancedURLFiltering #ChinaChopper #threatactors #CL-STA-0046 #CortexXSIAM #DNSsecurity #Government #CortexXDR #Gelsemium #webshells #backdoor #WildFire #APT

Unit42: Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government https://unit42.paloaltonetworks.com/rare-possible-gelsemium-attack-targets-se-asia/ #BehavioralThreatProtection #AdvancedURLFiltering #ChinaChopper #threatactors #CL-STA-0046 #CortexXSIAM #DNSsecurity #Government #CortexXDR #Gelsemium #webshells #backdoor #WildFire #APT

Unit42: Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government https://unit42.paloaltonetworks.com/rare-possible-gelsemium-attack-targets-se-asia/ #BehavioralThreatProtection #AdvancedURLFiltering #ChinaChopper #threatactors #CL-STA-0046 #CortexXSIAM #DNSsecurity #Government #CortexXDR #Gelsemium #webshells #backdoor #WildFire #APT