dns Archives • Daily CyberSecurity

The .gov Illusion: Inside the 16,800-Domain “Operation Trust Trap” Campaign Operation Trust Trap Subdomain Trust Injection

The .gov Illusion: Inside the 16,800-Domain “Operation Trust Trap” Campaign

Do Son April 28, 2026

Cyble Research and Intelligence Labs (CRIL) has uncovered a massive coordinated infrastructure consisting of over 16,800 malicious...

Motorola Smart Feed redirect Anthropic Amazon 5GW partnership Amazon Perplexity lawsuit AWS-LC Vulnerabilities Cryptographic Bypass AWS Middle East drone strikes Amazon layoffs 2026, Amazon AI restructuring Amazon Kindle DRM Policy, Publisher Control EPUB AWS Nova Forge AI Model Customization AWS Trainium3 EC2 Trn3 UltraServer Route 53 Accelerated Recovery AWS DNS Resilience AI Browser War, Amazon Comet Amazon layoffs, cost reduction AWS outage, DynamoDB DNS AWS outage, cloud dependency AWS VPN Client, Root Privilege Escalation WSA shutdown, Amazon Appstore Amazon Wondery, Podcast Restructuring Amazon Q2 2025 Generative AI AWS Client VPN, Privilege Escalation Amazon AI, Wearable AI

AWS Guarantees 60-Minute Recovery Time with New Route 53 Accelerated Recovery

Do Son November 28, 2025

Earlier, a severe outage in Amazon’s cloud computing service AWS disrupted thousands of major websites, leaving users...

C Windows SecureBoot folder KB5089549 Windows 11 BSOD Microsoft Windows, Rust programming WINS Service Deprecation Windows Server DNS Migration Windows Driver Standard OEM Kernel Privileges Windows Agentic OS Task Manager Bug, Windows 11 Performance Windows 11, Microsoft, WinRE, Update Bug, Tech Support Windows 11 OOBE, Microsoft Account Mandatory Windows 11, SSD failures Windows 11 Recovery, Black Screen of Death Windows 11 Update Issue, KB5062324 Windows 11, Indicator Bar

WINS is Dead: Microsoft to Fully Retire WINS Name Resolution from Windows Server Post-2025

Do Son November 24, 2025

Microsoft routinely retires certain features or components from the Windows SKU, typically due to security concerns, declining...

Cloud Chaos: Azure Outage Hits Microsoft 365 and Xbox Just Days After AWS Failure Azure outage, Front Door Microsoft Azure Surveillance, Gaza Call Records Red Sea cables, Azure outage MFA enforcement Azure outage, Red Sea cables Azure Key Vault Azure, Surveillance

Azure outage, Front Door Microsoft Azure Surveillance, Gaza Call Records Red Sea cables, Azure outage MFA enforcement Azure outage, Red Sea cables Azure Key Vault Azure, Surveillance

Cloud Chaos: Azure Outage Hits Microsoft 365 and Xbox Just Days After AWS Failure

Do Son October 30, 2025

Shortly after last week’s large-scale AWS outage, Microsoft’s Azure cloud platform also experienced a significant service disruption,...

The Domino Effect: AWS Outage Caused by DNS Automation Race Condition

Do Son October 25, 2025

Following the massive service outage that occurred on October 20 in its US-EAST-1 (Northern Virginia) region, AWS...

Detour Dog: Stealthy DNS Malware Uses TXT Records for Command and Control NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

Detour Dog: Stealthy DNS Malware Uses TXT Records for Command and Control

Do Son October 2, 2025

The Infoblox Threat Intelligence team has released an in-depth report on a global malware campaign leveraging the...

CVE-2025-58063: CoreDNS Vulnerability Could Disrupt DNS Updates CoreDNS Security Encrypted DNS Vulnerabilities CoreDNS vulnerability, DNS cache poisoning

CoreDNS Security Encrypted DNS Vulnerabilities CoreDNS vulnerability, DNS cache poisoning

CVE-2025-58063: CoreDNS Vulnerability Could Disrupt DNS Updates

Do Son September 11, 2025

The CoreDNS project has disclosed a vulnerability in its etcd plugin, tracked as CVE-2025-58063 (CVSS 7.1), which...

Cloudflare 1.1.1.1 Hit by 12 Unauthorized Certificates: Fina CA’s Misissuance Raises Microsoft Trust Concerns Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare 1.1.1.1 Hit by 12 Unauthorized Certificates: Fina CA’s Misissuance Raises Microsoft Trust Concerns

Do Son September 5, 2025

Yesterday, we reported that security researchers had discovered three unauthorized digital certificates for Cloudflare’s public DNS server...

A Misissued Certificate Found for Cloudflare’s 1.1.1.1 DNS Service Cloudflare, TLS certificates

A Misissued Certificate Found for Cloudflare’s 1.1.1.1 DNS Service

Do Son September 4, 2025

Cybersecurity experts have issued warnings regarding three anomalous TLS certificates associated with Cloudflare’s widely used DNS service...

ISC Warns of Cache Poisoning and Crash Risks in BIND: What You Need to Know About CVE-2025-40776 and CVE-2025-40777 BIND 9 Vulnerability CVE-2025-13878 BIND Cache Poisoning, DNS RCE BIND Vulnerabilities, DNS Security BIND 9 vulnerabilities BIND vulnerability, DNS server crash

BIND 9 Vulnerability CVE-2025-13878 BIND Cache Poisoning, DNS RCE BIND Vulnerabilities, DNS Security BIND 9 vulnerabilities BIND vulnerability, DNS server crash

ISC Warns of Cache Poisoning and Crash Risks in BIND: What You Need to Know About CVE-2025-40776 and CVE-2025-40777

Do Son July 18, 2025

The Internet Systems Consortium (ISC) has issued two security advisories addressing two high-impact vulnerabilities in BIND, its...

Cloudflare’s 1.1.1.1 DNS Suffers Global Outage Due to Internal Configuration Error Cloudflare Outage, DNS Misconfiguration CloudFlare WARP attack

Cloudflare Outage, DNS Misconfiguration CloudFlare WARP attack

Cloudflare’s 1.1.1.1 DNS Suffers Global Outage Due to Internal Configuration Error

Do Son July 17, 2025

The 1.1.1.1 public DNS service operated by Cloudflare—second in global usage only to Google’s 8.8.8.8—experienced a large-scale...

VexTrio Exposed: Infoblox Uncovers Massive Malicious Adtech Ecosystem Powering Global Malware VexTrio, Malicious Adtech

VexTrio Exposed: Infoblox Uncovers Massive Malicious Adtech Ecosystem Powering Global Malware

Do Son June 16, 2025

When Infoblox researchers set out to disrupt the notorious Traffic Distribution System (TDS) known as VexTrio, they...

CoreDNS DoS Flaw: Unauthenticated Attackers Can Crash Servers via DNS-over-QUIC CoreDNS Vulnerability, DoS Attack

CoreDNS DoS Flaw: Unauthenticated Attackers Can Crash Servers via DNS-over-QUIC

Do Son June 11, 2025

A critical denial-of-service (DoS) vulnerability has been identified in CoreDNS, the modular DNS server widely deployed across...

BIND DNS Server Vulnerable to Remote Crash BIND 9 Vulnerability CVE-2025-13878 BIND Cache Poisoning, DNS RCE BIND Vulnerabilities, DNS Security BIND 9 vulnerabilities BIND vulnerability, DNS server crash

BIND DNS Server Vulnerable to Remote Crash

Do Son May 21, 2025

The Internet Systems Consortium (ISC) has issued a high-severity security advisory for BIND, one of the most...

High Risk: PowerDNS DNSdist Flaw Allows Unauthenticated DoS Attacks PowerDNS Authoritative Server Vulnerabilities CVE-2026-42001 DoS CVE-2024-25581 DNSdist vulnerability, DNS DoS

PowerDNS Authoritative Server Vulnerabilities CVE-2026-42001 DoS CVE-2024-25581 DNSdist vulnerability, DNS DoS

High Risk: PowerDNS DNSdist Flaw Allows Unauthenticated DoS Attacks

Do Son May 21, 2025

PowerDNS has released a critical update to its high-performance DNS proxy and load balancer, DNSdist, addressing a...

Skitnet Analysis: Nim, Rust, and DNS Abuse in Advanced Malware Campaign

Do Son May 19, 2025

Security researchers at Prodaft have published an in-depth analysis of Skitnet, also known as Bossnet—a highly sophisticated...

Global Zoom Outage Caused by Domain Registry Error at GoDaddy Zoom Security, Vulnerabilities CVE-2023-34120 Zoom outage, domain error

Global Zoom Outage Caused by Domain Registry Error at GoDaddy

Do Son April 18, 2025

On Wednesday afternoon Eastern Time, Zoom, the widely used remote video conferencing platform, experienced a massive and...

Subdomain Takeovers: A Growing Supply Chain Threat Subdomain takeover, supply chain attack

Subdomain Takeovers: A Growing Supply Chain Threat

Do Son April 15, 2025

Subdomain takeovers, a type of attack where an attacker gains control of an organization’s improperly configured or...

Critical Vulnerability (CVE-2025-31498) Patched in c-ares DNS Library c-ares Vulnerability CVE-2025-31498

Critical Vulnerability (CVE-2025-31498) Patched in c-ares DNS Library

Do Son April 11, 2025

The Domain Name System (DNS) plays a pivotal role, translating human-friendly domain names into the numerical IP...

Critical Alert 1 Active Exploit Detected Today