hijacking

Dangling DNS and the dangers of subdomain hijacking

| | dns, hijacking, Malware, Phishing, Spam
DNS attacks are becoming increasingly prevalent, with 90% of organizations experiencing them, as per the IDC Threat Intelligence Report 2023. Due to its critical function, DNS is a frequent target for cybercrimes, ...
The Spamhaus Project
Expired and exploited: Reviving a 30-year-old legacy domain for hijacking

Expired and exploited: Reviving a 30-year-old legacy domain for hijacking

| | Domain reputation, hijacking, IP Reputation, Network Security
Due to the current shortage of IPv4 addresses, any legacy IP block, regardless of its size, including Autonomous System (AS) networks, is at risk of being hijacked and misused for identity theft ...
The Spamhaus Project

Spamhaus DROP and eDROP to become a single list

| | Free tools & data, hijacking, Network Security
From April 10th, 2024, Spamhaus eDROP (Extended Don’t Route Or Peer) data will be consolidated into the DROP lists, meaning eDROP will no longer be published separately. Read on for a closer ...
The Spamhaus Project

The return of the ASN-DROP

| | DNSBL, hijacking, Network Security
Further to requests from the community we've reinvigorated the ASN-DROP. With a new algorithm, ASN-DROP is now available in JSON format, listing Autonomous System Numbers (ASNs) associated with the worst of the ...
The Spamhaus Project
NETSCOUT cybersecurity, attacks resources security challenges tools breach API attacker Radware Report Sees Major Spike in DDoS Attacks

GitHub Vulnerability Put Code Packages at Risk of Repojacking

| | Cybersecurity, developers, GitHub, hijacking, software code
A new vulnerability found in GitHub’s operations could have given bad actors another way of getting around the code hosting platform’s security protections and exposing thousands of code packages to being hijacked ...
Security Boulevard

Emotet Email Aftermath

| | Botnet C&C, hijacking, Malware, Network Security, Threat Intelligence
At the end of January 2021, Europol announced that a coordinated group of international authorities had taken control of the Emotet botnet infrastructure. Prior to this takedown, Emotet had spread itself using ...
The Spamhaus Project

Suspicious network resurrections

| | bgp, hijacking, IP Reputation, Service Providers, Threat Intelligence
***UPDATE** Dec 1st 2020: A big thank you to Telia Carrier, Hurricane Electric and GTT for taking swift and positive action in shutting down the related announcements.* We believe there is a ...
The Spamhaus Project

The Current State of Domain Hijacking, and a specific look at the ongoing issues at GoDaddy

| | compromised, Domain reputation, hijacking, Service Providers, Threat Intelligence
**Domain hijacking is not a new problem, but it is one that gains strength if it is not countered effectively, and we have seen some disturbing trends in the last 6 months.** ...
The Spamhaus Project
severity, Tenable, application security, vulnerabilities, software, vulnerabilities, issues, servers, vulnerability, Linux, vulnerability management, risk-based, vulnerabilities third-party supply chain Okta endpoint security

In the Dark About Supply Chain Vulnerabilities

| | Barium collective, Breach, hijacking, software supply chain
The software supply chain can create a seemingly endless attack surface. Here’s what you can do to better protect it. Is the “Barium” hacking collective Chinese? Russian? North Korean? It really doesn’t ...
Security Boulevard

How to Halt the Hijackers

| | Domain reputation, hijacking, IP Reputation, Network Security
If you’ve read Network hijacking - the low down, you’ll be fully versed in the varied ways cybercriminals can hijack your network. In this article, we’ll be explaining how to protect against ...
The Spamhaus Project
Load more