PALM BEACH, FL - A critical vulnerability within the Domain Name System (DNS) has been unearthed and exploited by dozens of cybercriminals and hackers originating from Russia to take over thousands of domain names, according to cybersecurity researchers from Infoblox and Eclypsium. An estimated 30,000 legitimate domains have been hijacked by the digital thieves since 2019, experts say, utilizing a technique known as “Sitting Ducks” that exploits weak DNS services. The … [Read more...]
FIASCO: Multiple Squarespace Domains Hijacked After Security Loophole Exploited
NEW YORK, NY - Last week, multiple organizations with domains registered with Squarespace had their websites hijacked by hackers, with most of the instances primarily targeting cryptocurrency-based businesses, such as Celer Network, Compound Finance, Pendle Finance, and Unstoppable Domains. The hijacks took place between July 9 and July 12, and involved Google Domains assets; Squarespace had purchased the Google Domains service in June 2023 – along with approximately 10 … [Read more...]
Ticketmaster Faces Massive Data Breach, Affecting Millions of Users
WEST HOLLYWOOD, CA - Ticketmaster, the ticketing giant, is reeling from a major data breach that may have exposed the personal information of over half a billion users. The notorious hacking group ShinyHunters is claiming responsibility for the attack and is demanding a ransom of $500,000 to prevent the data from being sold. While Ticketmaster has yet to confirm the breach officially, security experts are taking the claims seriously. According to reports, the stolen data … [Read more...]
10 Billion Connections to Malicious Domains Blocked by NSA in 2023 via “PDNS”
WASHINGTON, D.C. - The National Security Agency (NSA) noted that 10 billion user connections to known malicious or suspicious domains were blocked over the course of the past year as part of the agency’s efforts, according to its 2023 Cybersecurity Year in Review report released on Tuesday. The NSA‘s annual report is a public account of the agency’s work with government partners, defense industrial base (DIB) entities, and foreign partners to help keep the nation secure, … [Read more...]
Scammers Sending Emails from Spoofed Authoritative Domains Via Forwarding Flaws
LA JOLLA, CA - According to research conducted by the University of California San Diego, due to flaws inherent in the process of forwarding emails, the ability for scammers and attackers to send unsuspecting victims e-mails from the spoofed addresses of top-level government or corporate domains is actually much easier than many experts were initially suspecting, opening up disturbingly new and effective avenues for online fraud. The integrity of emails sent from … [Read more...]
Threat Intelligence Firm Recommends Blocking All .ZIP Domains Due to Phishing
SUNNYVALE, CA - FortiGuard Labs reports that they have discovered many .ZIP domains are responsible for phishing attacks on users by automatically downloading a malicious executable titled “file.exe” to their computers. Phishing attacks have been a thorn in the side of computer users for years due to the fact that they often are able to camouflage themselves as innocuous programs or prompts that seemingly pose no threat, but in reality can cause a great deal of … [Read more...]
Forbes Details How Mission Critical “.com” Domains Remain; Naysayers Delusional
PALM BEACH, FL – While I periodically entertain alternatives and still hold and use a few, I remain a big believer in the “.com” domain name extension over any other available alternative in nearly any scenario. There are only a few cases where an alternative makes sense and looks good, but remains vulnerable. I have always based this very simple and what should be obvious logic to what has taken place for general marketing in the past with the “1-800” business which … [Read more...]
It’s Only A Matter of Time Until You Need to Be Licensed to Operate A Web Server
PALM BEACH, FL – I have been thinking about this off and on for a few years now, but I have never really posted or written about it. That is because it is an awful prediction that I hate the idea of, but I think it is going to eventually happen. Here it goes…. I predict that to operate a web server sometime in the near future, you will be required to have a license, or have passed a basic course in IT security or Cybersecurity intrusion mitigation. Not at the single site … [Read more...]
How to Become a ‘Rockstar Domainer’ by Developing Your Own Domain Assets
NEW YORK – Unless you have been living in a cave for the last few years, you’ve caught wind that parking your domain names is potentially the worst thing you can do to monetize them. Today, you need to DEVELOP your domain names into real web services to earn realistic profits from them, but development is not always easy, especially if you do not know how to do any of it yourself, as it can be VERY EXPENSIVE. Development involves an ‘idea’, planning, design, development, … [Read more...]
Misfortune Anyone? This Dangerous Vulnerability Could Be Lurking In Your Network Router
NEW YORK, NY - Misfortune Anyone? Today, WordFence [I really love these people], a company whom distributes a popular security plugin for WordPress websites, released a great article about a vulnerability on computer networks that is being exploited. With the article they also included a simple button which you can use to scan your network's vulnerability, so that if you are vulnerable to this Internet router exploit, you will know about it ASAP and can begin hounding … [Read more...]