Black Friday, Fake Websites and Posts
26 November 2023 Ed Seaford - In the wake of the recent Black Friday sales, a critical issue has come to light, as highlighted in the Australian Competition and Consumer [...]
Registrars Responsibility to Address Phishing Domains
Phishing domain names A phishing domain name is a domain name that is registered to look like a legitimate domain name. Phishing domain names are used in phishing attacks, which [...]
bank scams grow in Australia
Bank scams: The Australian Banking Association (ABA) released an awareness report and campaign about the increasing threat of scams. Last year in Australia $851 million was lost to scams. [...]
Penetration Testing: How to choose a supplier?
Penetration Testing aka pen testing has become a critical part of securing a business' critical applications and networks. The market has a range of players, some that rely on [...]
Domain Name Monitoring: be proactive, not reactive
The first half of 2021 saw a large number of domain name-related attacks. ICANN (the global domain regulator) identified 6,124,060 domain name security threats. Most major Australian brands experienced some [...]
Bug: Hackers could spy on Google, AWS DNS traffic
Security firm Wiz, announced that they had discovered a simple loophole that allows the interception a portion of dynamic DNS traffic from all Internet traffic that was routed through managed DNS [...]
Let’s Encrypt exploited for fraudulent SSL certificates
As reported by encrytion specialist John Layden, Security shortcomings in the mechanism used by Let’s Encrypt to validate web domain ownership create a loophole that allow cybercriminals to get digital [...]
SPF records, from nice to have to must have
SPF records are critical to all businesses, small to enterprise. Have you ever received an email that looks like it is from a Bank but it is actually from a [...]
Registry Lock to Prevent Domain Hijacking
What is domain hijacking? Domain name hijacking is when an unauthorized third party, often a hacker, gains control of a company's domain name portal and seizes control over their DNS [...]
Portal Security: The Basics
Domain password security - the basics Hackers use basic hacks and social engineering techniques to obtain, or figure out, passwords that do not follow best practice configurations. It is crucial [...]
Report: Domain Security and Enterprise Risk Management
Dave Piscitello, Dr. Colin Strutt, and Lyman Chapin of the Interisle Consulting Group released a report (click here) on 28 June 2021 looking at the adverse and costly consequences of [...]
A look at how cybercriminals exploit spoofed domains
Originally published by David Goldstein of Brandshelter With cybercriminals seeking to take advantage any way possible, internet users need to be aware of what they are doing online all the [...]