Latest DNS news

Hackers use DNS tunneling for network scanning, tracking victims

Threat actors are using Domain Name System (DNS) tunneling to track when their targets open phishing emails and click on malicious links, and to scan networks for potential vulnerabilities.
- Bill Toulas
- May 13, 2024
- 01:50 PM
- 1
Android bug leaks DNS queries even when VPN kill switch is enabled

A Mullvad VPN user has discovered that Android devices leak DNS queries when switching VPN servers even though the "Always-on VPN" feature was enabled with the "Block connections without VPN" option.
- Sergiu Gatlan
- May 03, 2024
- 05:02 PM
- 4
Muddling Meerkat hackers manipulate DNS using China’s Great Firewall

A new cluster of activity tracked as "Muddling Meerkat" is believed to be linked to a Chinese state-sponsored threat actor's manipulation of DNS to probe networks globally since October 2019, with a spike in activity observed in September 2023.
- Bill Toulas
- April 29, 2024
- 04:24 PM
- 0
Savvy Seahorse gang uses DNS CNAME records to power investor scams

A threat actor named Savvy Seahorse is abusing CNAME DNS records Domain Name System to create a traffic distribution system that powers financial scam campaigns.
- Bill Toulas
- February 28, 2024
- 09:00 AM
- 0
KeyTrap attack: Internet access disrupted with one DNS packet

A serious vulnerability named KeyTrap in the Domain Name System Security Extensions (DNSSEC) feature could be exploited to deny internet access to applications for an extended period.
- Bill Toulas
- February 17, 2024
- 11:08 AM
- 0
ExpressVPN bug has been leaking some DNS requests for years

ExpressVPN has removed the split tunneling feature from the latest version of its software after finding that a bug exposed the domains users were visiting to configured DNS servers.
- Bill Toulas
- February 11, 2024
- 10:09 AM
- 0
Massive cybercrime URL shortening service uncovered via DNS data

A threat actor that security researchers call Prolific Puma has been providing link shortening services to cybercriminals for at least four years while keeping a sufficiently low profile to operate undetected.
- Ionut Ilascu
- October 31, 2023
- 11:23 AM
- 1
Square: Last week’s outage was caused by DNS issue, not a cyberattack

Payment processing firm Square says a widespread outage that took down a large part of the company's infrastructure last week was caused by a DNS issue.
- Sergiu Gatlan
- September 11, 2023
- 11:21 AM
- 0
Hotmail email delivery fails after Microsoft misconfigures DNS

Hotmail users worldwide have problems sending emails, with messages flagged as spam or not delivered after Microsoft misconfigured the domain's DNS SPF record.
- Lawrence Abrams
- August 18, 2023
- 11:44 AM
- 2
MaginotDNS attacks exploit weak checks for DNS cache poisoning

A team of researchers from UC Irvine and Tsinghua University has developed a new powerful cache poisoning attack named 'MaginotDNS,' that targets Conditional DNS (CDNS) resolvers and can compromise entire TLDs top-level domains.
- Bill Toulas
- August 13, 2023
- 10:12 AM
- 0
Mysterious Decoy Dog malware toolkit still lurks in DNS shadows

New details have emerged about Decoy Dog, a largely undetected sophisticated toolkit likely used for at least a year in cyber intelligence operations, relying on the domain name system (DNS) for command and control activity.
- Ionut Ilascu
- July 25, 2023
- 12:44 PM
- 0
Stay safe online with $200 off this security software bundle deal

Don't miss out while this lifetime subscription to MonoDefense Security Suite is on sale for just $149.99 (reg. $399).
- BleepingComputer Deals
- July 22, 2023
- 08:19 AM
- 0
Decoy Dog malware toolkit found after analyzing 70 billion daily DNS queries

A new enterprise-targeting malware toolkit called 'Decoy Dog' has been discovered after inspecting anomalous DNS traffic that is distinctive from regular internet activity.
- Bill Toulas
- April 23, 2023
- 10:25 AM
- 3
DDoS attacks shifting to VPS infrastructure for increased power

Hyper-volumetric DDoS (distributed denial of service) attacks in the first quarter of 2023 have shifted from relying on compromised IoT devices to leveraging breached Virtual Private Servers (VPS).
- Bill Toulas
- April 12, 2023
- 03:40 PM
- 0
Domain shadowing becoming more popular among cybercriminals

Threat analysts at Palo Alto Networks (Unit 42) discovered that the phenomenon of 'domain shadowing' might be more prevalent than previously thought, uncovering 12,197 cases while scanning the web between April and June 2022.
- Bill Toulas
- September 21, 2022
- 04:04 PM
- 0
Microsoft Azure outage knocks Ubuntu VMs offline after buggy update

Microsoft Azure customers' virtual machines (VMs) running Ubuntu 18.04 have been taken offline by an ongoing outage caused by a faulty systemd update.
- Sergiu Gatlan
- August 30, 2022
- 11:41 AM
- 0
Google boosts Android privacy with support for DNS-over-HTTP/3

Google has added support for the DNS-over-HTTP/3 (DoH3) protocol on Android 11 and later to increase the privacy of DNS queries while providing better performance.
- Bill Toulas
- July 20, 2022
- 05:13 PM
- 1
Clean your internet experience with this DNS-based ad blocker deal

As technology advances, so will the privacy and data risks associated with it. A Control D two-year subscription blocks annoyances and filters out risks for $30, 37% off the $48 MSRP.
- BleepingComputer Deals
- June 09, 2022
- 07:11 AM
- 0
Unpatched DNS bug affects millions of routers and IoT devices

A vulnerability in the domain name system (DNS) component of a popular C standard library that is present in a wide range of IoT products may put millions of devices at DNS poisoning attack risk.
- Bill Toulas
- May 03, 2022
- 09:18 AM
- 2
Microsoft: Recent Windows Server updates cause DNS issues

Microsoft has addressed a new known issue causing DNS stub zones loading failures that could lead to DNS resolution issues on Windows Server 2019 systems.
- Sergiu Gatlan
- March 24, 2022
- 11:27 AM
- 2