In November 2024, cybersecurity researchers at Infoblox uncovered one of the largest domain hijacking campaigns in recent history. The attack, dubbed “Sitting Ducks,” resulted in the compromise of approximately 70,000 legitimate domains belonging to well-known brands, non-profits, and government entities. This massive breach serves as a stark reminder that domain ... View Post
Our latest blog posts
DNS Spoofing: A Deep Dive Into This Devious Cyber Attack (and How to Stop It)
The Internet's Trust Problem Picture this: You're heading to an important business meeting, and you call your most trusted contact for directions. They confidently give you an address, you follow their guidance perfectly, and you end up at a completely different location—one that looks legitimate but is actually controlled by someone with malicious intent. This ... View Post
The Case for YubiKeys: Stronger Login Security for Your Domains
Your domain name is more than an address on the internet. It’s your brand, your identity, and the foundation of your online presence. Protecting it is critical. Yet far too often, domain security gets overlooked until something goes wrong. Two-factor authentication (2FA) is one of the simplest and most effective ways to reduce risk — but not all 2FA methods are ... View Post
Two Years Late, and Millions Short: 187,000 People Have their Personal and Financial Information Stolen from Bank Breach
When customers hand over their personal and financial data, they are trusting that institution with their livelihoods. That trust was shattered when Fairmont Federal Credit Union (FFCU) disclosed a breach — two years after it happened — that compromised the complete financial identities of 187,038 people. The attack itself took place in late 2023. The Black Basta ... View Post
Google Panic Spreads Faster than Facts: Best Practices for Password Management in 2025
Why Password Security Matters In late August 2025, alarming reports spread online claiming that Google had issued urgent warnings to all 2.5 billion Gmail users to change their passwords. Headlines suggested a massive Gmail breach, sparking panic worldwide. Google clarified on September 1, 2025, that these reports were entirely false. Gmail accounts were never ... View Post
From PayPal to Your Platform: How Credential Stuffing Spreads Risk
Attacks don’t stop at one company. Reused credentials and phishing domains make every business a target. The PayPal “Hack” That Shook Confidence In May 2025, headlines screamed that nearly 16 million PayPal accounts had been hacked. Hackers claimed to be selling a massive dataset of email and password pairs on a dark-web forum. The news rattled PayPal’s users and ... View Post