IN THE NEWS

New research from Infoblox Threat Intel and Confiant reveals that cybercriminals are abusing Keitaro, a widely used ad tracker, to hide (“cloak”) scams and malware behind ordinary web traffic; with many posing specifically as AI investment opportunities.

NIST’s refreshed DNS security guidance is now the benchmark for companies — and Infoblox helped write the blueprint.

As AI agents sweep the tech scene, organizations are clamoring to weave them into their workflows—and rightfully so. Those who get left behind in the race to adopt AI technology are on a fast track to losing their edge to competitors or even becoming obsolete. However, the task of agentifying business processes is much easier said than done, particularly when it comes to agentifying IT.

Authorities seized infrastructure powering four botnets that hijacked a combined three million devices and launched more than 300,000 DDoS attacks collectively, the Justice Department said Thursday.

The message arrived on a Tuesday morning, a wrong number, apparently, followed by an apology and then a brief, friendly exchange. The person on the other end seemed harmless, interesting even. They mentioned travel, asked thoughtful questions, and remembered details from one conversation to the next. Months passed, and a trust was built – this was of the kind that takes time. Then came the mention, almost as an afterthought, of a trading platform that had been performing quietly and reliably for years.

Researchers at Infoblox uncovered a 14,000-device botnet dubbed Mikro Typo, hijacking MikroTik routers as email proxies. Exploiting misconfigured SPF DNS records, the botnet relays spam and phishing campaigns that bypass authentication checks — a stealthy, service-oriented operation that went undetected for months.

Cybersecurity leaders gathered for the second annual Women in Cyber Security Summit at Australian Parliament House on 12 March, bringing together senior figures from government, industry, education and advocacy to address one of the sector’s most pressing challenges: improving diversity in the cyber workforce.

Cyber security leaders from government, industry and academia gathered at Parliament House this week for the second annual Women in Cyber Security Summit, where speakers called for stronger action to improve diversity across the country’s rapidly growing cyber workforce.

A threat actor has found a new way to evade phishing detection defenses: Manipulate the .arpa top-level domain (TLD) and IPv6-to-IPv4 tunneling to host phishing content on domains that shouldn’t resolve to an IP address.

A threat actor has been abusing the internet infrastructure top-level domain (TLD) .arpa to host phishing content on domains that should not resolve to IP addresses, Infoblox reports.