On May 15, 2025, Coinbase—the world’s third-largest crypto exchange—revealed a sophisticated phishing breach that could cost up to $400 million in damages. While the technical infrastructure of their blockchain remained intact, the attackers never needed to touch it. Instead, they exploited something far older and more vulnerable: human trust and DNS-linked access ... View Post
News
“Sitting Duck” DNS flaw is a Red Herring
Four key points about the "sudden" emergence of this vulnerability - and how to mitigate it. On July 31st, security journalist Brian Krebs published an article about a DNS vulnerability dubbed "Sitting Duck", which claimed: "More than a million domain names — including many registered by Fortune 100 firms and brand protection companies — are vulnerable to takeover ... View Post
Why the Dark Web Matters for Your Business (and DNS Security)
Do you know about the hidden dangers on the dark web? This part of the internet is a big risk for businesses. It leaves important info, customer details, and money info open to hackers. Since the dark web makes up about 5% of the internet, it's key for companies to know the risks and protect themselves. Cybercriminals use Tor's anonymity to do bad things on the ... View Post
109 Million AT&T User Accounts Stolen: How Businesses Use DNS Security to Protect their Customers
Telecommunications giant AT&T has faced a huge data breach, affecting about 109 million people. Hackers accessed their call records. This happened between April 14 and April 25, 2024. The breach touched call and text data from May 1 to October 31, 2022, and a single day on January 2, 2023. This breach hit not just AT&T customers but also those of mobile ... View Post
Solving the Cybersecurity “Skill Gap” Myth
For the past several years, we have heard one prevailing narrative in the world of cybersecurity: there’s a significant skill gap. Therefore, we have a labor shortage. Current data from CyberSeek indicates a staggering 663,434 cybersecurity job openings in the U.S., starkly contrasted by an existing workforce of just over 1.1 million professionals. This disparity ... View Post
Case Study: Lessons on Enhancing Cybersecurity from Velodrome’s DNS Attack
On November 22nd, Velodrome fell victim to a DNS attack, a type of cyber assault that targets the Domain Name System, the backbone of internet navigation. The attackers executed a well-planned social engineering scheme to gain control over Velodrome's domain names, leading to an estimated loss of up to $250,000. The attack not only resulted in financial damages but ... View Post