Recognizing Lessons Learned From the First DNSSEC Key Rollover, a Year Later

November 26, 2019 • By Burt Kaliski • Security

A year ago, under the leadership of the Internet Corporation for Assigned Names and Numbers (ICANN), the internet naming community completed the first-ever rollover of the cryptographic key that plays a critical role in securing internet traffic worldwide. The ultimate success of that endeavor was due in large part to outreach efforts by ICANN and Verisign which, when coupled with the tireless efforts of the global internet measurement community, ensured that this significant event did not disrupt internet name resolution functions for billions of end users.

(more…)

Revisiting How Registrants Can Reduce the Threat of Domain Hijacking

February 11, 2019 • By Matt Thomas • Domain Names, Security

Recent events^1,2 have shown the threat of domain hijacking is very real; however, it is also largely preventable. As Verisign previously noted³, there are many security controls that registrants can utilize to help strengthen their security posture. Verisign would like to reiterate this advice within the context of the recent domain hijacking reports.

(more…)

Q2 2018 DDOS TRENDS REPORT: 52 PERCENT OF ATTACKS EMPLOYED MULTIPLE ATTACK TYPES

September 27, 2018 • By Verisign • 3 comments • DDoS Protection, Security

Verisign just released its Q2 2018 DDoS Trends Report, which represents a unique view into the attack trends unfolding online, through observations and insights derived from distributed denial of service (DDoS) attack mitigations enacted on behalf of customers of Verisign DDoS Protection Services.

Download your free copy of the Q2 2018 DDoS Trends Report

(more…)

Operational Update Regarding the KSK Rollover for Administrators of Recursive Name Servers

August 30, 2018 • By Verisign • 14 comments • Recursive DNS, Security

Currently scheduled for October 11, 2018, the Internet Corporation for Assigned Names and Numbers (ICANN) plans to change the cryptographic key that helps to secure the internet’s Domain Name System (DNS) by performing a Root Zone Domain Name System Security Extensions (DNSSEC) key signing key (KSK) rollover.

(more…)

Q1 2018 DDoS Trends Report: 58 Percent of Attacks Employed Multiple Attack Types

June 28, 2018 • By Verisign • 1 comment • DDoS Protection, Security

Verisign just released its Q1 2018 DDoS Trends Report, which represents a unique view into the attack trends unfolding online, through observations and insights derived from distributed denial of service (DDoS) attack mitigations enacted on behalf of Verisign DDoS Protection Services, and security research conducted by Verisign Security Services.

Download your free copy of the Q1 2018 DDoS Trends Report

(more…)

DNS-Based Threats: Cache Poisoning

April 17, 2018 • By Kevin Piper • 3 comments • Recursive DNS, Security

The Domain Name System (DNS) is the cornerstone of communication for the internet. Navigating to the sites you access every day often starts with a DNS request. Cybercriminals recognize the value of DNS and may look for ways to abuse improperly secured DNS to compromise its uptime, integrity or overall response efficacy—which makes DNS an important area for enforcing security and protecting against threats.

One such threat: cache poisoning. (more…)

Q4 2017 DDoS Trends Report: Financial Sector Experienced 40 Percent of Attacks

March 15, 2018 • By Verisign • DDoS Protection, Security

Verisign just released its Q4 2017 DDoS Trends Report, which represents a unique view into the attack trends unfolding online, through observations and insights derived from distributed denial of service (DDoS) attack mitigations enacted on behalf of Verisign DDoS Protection Services and security research conducted by Verisign Security Services.

Download your free copy of the Q4 2017 DDoS Trends Report

(more…)

DNS-Based Threats: DNS Reflection and Amplification Attacks

December 13, 2017 • By Frank Scalzo • 1 comment • DDoS Protection, Security

The Domain Name System (DNS), if not properly secured, may be susceptible to abuse by malicious actors. Cybercriminals recognize the value of DNS availability and look for ways to compromise DNS uptime and the DNS servers that support it. As such, DNS becomes an important point of security enforcement and a potential point in the Cyber Kill Chain^®1 for many cyber-attacks.

This blog discusses one such threat, DNS reflection and amplification attacks.

(more…)

Q3 2017 DDoS Trends Report: 29 Percent of Attacks Employed Five or More Attack Types

December 7, 2017 • By Verisign • 1 comment • DDoS Protection, Security

Verisign just released its Q3 2017 DDoS Trends Report, which represents a unique view into the attack trends unfolding online, through observations and insights derived from distributed denial of service (DDoS) attack mitigations enacted on behalf of Verisign DDoS Protection Services and security research conducted by Verisign Security Services.

Download your free copy of the Q3 2017 DDoS Trends Report

(more…)

A Framework for Resilient DNS Security: DNS Availability Drives Business

November 30, 2017 • By Michael Kaczmarek • 1 comment • Managed DNS, Security

To establish connectivity with other users and devices, almost anything that interfaces with the internet depends on the accuracy, integrity and availability of the Domain Name System (DNS). Most online transactions and data movement are critically dependent on DNS services.

As such, DNS is an important point of security enforcement and a potential point in the Cyber Kill Chain for many cyber-attacks. Organizations are beginning to recognize this and are using DNS security mechanisms as a first line of defense for preventing or mitigating online threats.

(more…)

Browsing Category

Security