In an effort to speed up adoption of DNSSEC, a group of interested Internet engineers has created the OpenDNSSEC project with the intention of creating an open source version of Domain Name System Security Extensions (DNSSEC). The project leaders hope that this will make it easier for organizations to adopt …
Read More »Researchers virtualize 1 million Linux kernels
Villains beware. Researchers at Sandia National Laboratories have created the mother of all supercomputers that could be used in the fight against botnets and other massive computer attacks. Their supercomputer, called Thunderbird is made up of a 4,480-node high performance cluster. Each cluster ran 250 virtual machines, each running the …
Read More »Urgent exploit found in BIND
A DoS (denial of service) security bug has been found in BIND, and the Internet Systems Consortium (ISC) is recommending that users upgrade immediately. BIND, which stands for Berkeley Internet Name Domain is the most widely used and accepted DNS server. Most Linux and other Unix-like server run BIND, and …
Read More »Should falsifying domain contact information be illegal?
Few Americans know that it is in fact illegal to to falsify personal details when registering a domain. With the enacting of the Truth in Domain Names Act in 2003, it became a crime to “knowingly and with the intent to defraud” provide false contact information to a domain registrar. …
Read More »Most web users ignore security certificate warnings
How many times have you searched for the perfect site about the new summer action movie and clicked on a link only to be presented with a warning about a certificate. Do you stop and read the warning? Do you investigate the certificate? Would you even know if the certificate …
Read More »PIR to test new security implementation
In early June, we reported about the Public Interest Registry (PIR) and their plans to introduce new security to .org top-level domains (TLD). After a month of preparing, PIR is ready to move some 18 live domains to the security extensions for testing. The official launch of the new system, …
Read More »Argentina creates .banco.ar extension for banks
In an effort to cut down on Internet fraud and scams, especially phishing, the Argentine government has joined forces with banks to create the .banco.ar domain extension. By only allowing financial institutions to register a .banco.ar name, bank customers can easily tell if a suspect website is legitimate or not. …
Read More »Korean cyberattack may be wild goose chase
U.S. and South Korean agencies are still scratching their heads trying to track down the perpetrators of widely publicized July 4 attacks. South Koreans were quick to point the finger at North Korea or “North Korean sympathizers”, but as of yet, no concrete proof has emerged. The botnet infected 50,000 …
Read More »What's in a password?
Phishing is on the rise, and with more services moving online, web fraud is a serious concern. Most people are pretty confident that their passwords are safe from cybercrime, but are they really? For your Twitter account, maybe you are not that concerned if your password is your daughter’s name, …
Read More »Korean DDoS malware may self destruct
Earlier this week, we reported a series of attacks on key South Korean and U.S. government servers that took some of them offline. The attacks are still under investigation, but a blog post on the Washington Post’s website suggests that the botnet being used to deliver the DDoS (distributed denial …
Read More »