Logo
Unit42 Logo
  • Tools
  • ATOMs
  • Security Consulting
  • About Us
  • Under Attack?

Posts tagged with: DNS security

Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain ThreatsA pictorial representation of network attack trends such as CVE-2021-35394 featuring a stylized bug on IoT-related products. The Palo Alto Networks and Unit 42 logos are included.
7,443
people reacted

Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats

  • By Yiheng An, Chao Lei, Adam Robbie, Aveek Das, Zhibin Zhang and Shehroze Farooqi
  • January 24, 2023 at 6:00 AM

19

8 min. read

Chinese Playful Taurus Activity in IranA pictorial representation of the threat actor group Playful Taurus showing an illustration of an orange bull’s head against the background of a blue night sky. Included is the constellation of Taurus.
16,522
people reacted

Chinese Playful Taurus Activity in Iran

  • By Unit 42
  • January 18, 2023 at 3:00 AM

22

9 min. read

Trending

  • Answers to Unit 42 Wireshark Quiz, January 2023 by Brad Duncan
  • Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats by Zhibin Zhang
  • Unit 42 Wireshark Quiz, January 2023 by Brad Duncan
  • Chinese PlugX Malware Hidden in Your USB Devices? by Mike Harbison
Threat Brief: OWASSRF Vulnerability ExploitationA pictorial representation of the ProxyNotShell bypass threat brief
35,884
people reacted

Threat Brief: OWASSRF Vulnerability Exploitation

  • By Robert Falcone and Lior Rochberger
  • December 22, 2022 at 5:30 PM

11

9 min. read

Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of UkraineA pictorial representation of Trident Ursa showing a purple bear and trident
49,388
people reacted

Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of Ukraine

  • By Unit 42
  • December 20, 2022 at 3:00 AM

31

15 min. read

Trends in Web Threats in CY Q2 2022: Malicious JavaScript Downloaders Are EvolvingTrends conceptual image, covering web threat trends such as the evolution of a malicious JavaScript downloader.
49,045
people reacted

Trends in Web Threats in CY Q2 2022: Malicious JavaScript Downloaders Are Evolving

  • By Cecilia Hu, Tao Yan, Jin Chen and Taojie Wang
  • October 26, 2022 at 6:00 AM

8

8 min. read

CNAME Cloaking: Disguising Third Parties Through the DNSDNS security conceptual image, covering concepts including CNAME cloaking
49,144
people reacted

CNAME Cloaking: Disguising Third Parties Through the DNS

  • By Rebekah Houser and Daiping Liu
  • October 24, 2022 at 6:00 AM

5

10 min. read

Detecting Emerging Network Threats From Newly Observed DomainsDNS security conceptual image, covering topics including malicious newly observed domains
49,410
people reacted

Detecting Emerging Network Threats From Newly Observed Domains

  • By Zhanhao Chen, Daiping Liu, Wanjin Li and Fan Fei
  • October 17, 2022 at 6:00 AM

7

8 min. read

More Than Meets the Eye: Exposing a Polyglot File That Delivers IcedIDConceptual image representing malware, such as the information stealer IcedID, being delivered by a polyglot file.
58,513
people reacted

More Than Meets the Eye: Exposing a Polyglot File That Delivers IcedID

  • By Mark Lim
  • September 27, 2022 at 6:00 AM

70

4 min. read

Domain Shadowing: A Stealthy Use of DNS Compromise for CybercrimeDNS security and issues such as domain shadowing are represented by the caution sign within a folder structure. Image includes Palo Alto Networks and Unit 42 logos.
62,962
people reacted

Domain Shadowing: A Stealthy Use of DNS Compromise for Cybercrime

  • By Janos Szurdi, Rebekah Houser and Daiping Liu
  • September 21, 2022 at 6:00 AM

80

7 min. read

Russia’s Gamaredon aka Primitive Bear APT Group Actively Targeting UkraineA bear trap accompanied by symbols associated with Russia and Ukraine come together to form a conceptual image for Russia's Gamaredon, aka Primitive Bear, an APT targeting Ukraine.
112,720
people reacted

Russia’s Gamaredon aka Primitive Bear APT Group Actively Targeting Ukraine

  • By Unit 42
  • February 3, 2022 at 1:00 PM

63

15 min. read

Strategically Aged Domain Detection: Capture APT Attacks With DNS Traffic TrendsA conceptual image representing DNS security, such as the strategically aged domain detection system discussed here.
47,921
people reacted

Strategically Aged Domain Detection: Capture APT Attacks With DNS Traffic Trends

  • By Zhanhao Chen, Daiping Liu, Wanjin Li and Jielong Xu
  • December 29, 2021 at 6:00 AM

42

9 min. read

Play Your Cards Right: Detecting Wildcard DNS AbuseA conceptual image representing attacks on DNS, including the Wildcard DNS abuse discussed here.
38,212
people reacted

Play Your Cards Right: Detecting Wildcard DNS Abuse

  • By Rebekah Houser and Daiping Liu
  • December 1, 2021 at 6:00 AM

20

10 min. read

Dangling Domains: Security Threats, Detection and PrevalenceA conceptual image representing exploitation of DNS, such as an often overlooked issue discussed in this blog, dangling domains, which can be exploited for DNS hijacking.
46,213
people reacted

Dangling Domains: Security Threats, Detection and Prevalence

  • By Daiping Liu and Ruian Duan
  • September 16, 2021 at 6:00 AM

23

12 min. read

DNS Rebinding Attack: How Malicious Websites Exploit Private NetworksA conceptual image representing issues with DNS, such as the DNS rebinding discussed here.
64,226
people reacted

DNS Rebinding Attack: How Malicious Websites Exploit Private Networks

  • By Zhanhao Chen
  • August 31, 2021 at 6:00 AM

42

13 min. read

Discovering CAPTCHA Protected Phishing CampaignsA conceptual image representing phishing, as discussed in this post. Here, we cover CAPTCHA-protected phishing campaigns and how they can be detected and mitigated.
36,793
people reacted

Discovering CAPTCHA Protected Phishing Campaigns

  • By Shresta Bellary Seetharam, Billy Melicher and Oleksii Starov
  • August 13, 2021 at 12:00 PM

45

8 min. read

Popular Resources

  • Resource Center
  • Blog
  • Communities
  • Tech Docs
  • Unit 42
  • Sitemap

Legal Notices

  • Privacy
  • Terms of Use
  • Documents

Account

  • Manage Subscriptions
  •  
  • Report a Vulnerability

© 2023 Palo Alto Networks, Inc. All rights reserved.