Recent Articles

Looking Back to Look Forward: The Anthem Breach

Looking Back to Look Forward: The Anthem Breach

| April 10, 2015 | 0 Comments

Part 2 of 2 In Part 1 of this discussion of threat actor analysis, we got some insights into why threat actor analysis has a major role to play in every phase of cybersecurity, from prevention to mitigation to response to monitoring. Today, we’ll take a look at how a key DomainTools partner, ThreatConnect, used […]

Continue Reading

DomainTools.com: The Evolution Continues

DomainTools.com: The Evolution Continues

| March 18, 2015 | 0 Comments

Nearly 18 months ago, we started to more directly focus on the threat intelligence arena with our leading domain name and DNS data. Cybersecurity breaches have become a major focus of organizations worldwide in recent years, and our clients have proven the value of our data in investigating attacks and securing their networks and systems. […]

Continue Reading

Attack Attribution: Looking Back to Look Forward

Attack Attribution: Looking Back to Look Forward

| March 12, 2015 | 0 Comments

Part 1 of 2 Lest we see only doom and gloom in the cascade of data breach disclosures, it’s worth acknowledging some of the outstanding work being done on the good guys’ side in the cyber wars. We’re going to take a two-part look at this, starting with some discussion of attack attribution and adversary […]

Continue Reading

Bulk Parsed Whois—No API Required!

Bulk Parsed Whois—No API Required!

| February 5, 2015 | 1 Comment

As you already know, DomainTools has worked tirelessly to build the world’s best database of Whois records, with coverage spanning all of the ccTLDs and each new gTLD as it comes online—not to mention the “big six” TLDs: com, net, org, biz, info, and us. We believe we have reason–because our customers tell us so–to […]

Continue Reading

Part 2: Hacker Movies (and Cybersecurity Concerns) Go Mainstream

Part 2: Hacker Movies (and Cybersecurity Concerns) Go Mainstream

| January 22, 2015 | 0 Comments

The early reviews of Blackhat are in, and it doesn’t look favorable. Maybe Hollywood will have better luck depicting cybercrime on television with shows like Scorpion and the upcoming CSI: Cyber. But in any case, we’ll tread on with our 3 part series of movie reviews. In our previous post about Tron and WarGames, we […]

Continue Reading

Retail Priorities On Display at NRF’s Big Show

Retail Priorities On Display at NRF’s Big Show

| January 21, 2015 | 0 Comments

Continue Reading

Part 1: Hacking the Movies, Then and Now

Part 1: Hacking the Movies, Then and Now

| January 15, 2015 | 0 Comments

When we use the words “hacking” and “movies” in the same sentence, we’re not talking about the Sony incident last year.  We’re talking about hacker movies like the upcoming Universal Pictures, Michael Mann production of Blackhat, starring Thor himself. The movie comes out this Friday, and the previews look interesting enough and hopefully the premise and […]

Continue Reading

Domain Profile Information Helps Fight Hacking, Cyber Espionage

Domain Profile Information Helps Fight Hacking, Cyber Espionage

| December 2, 2014 | 0 Comments

If you’re a regular reader of our blog, you know that we often take a bit of a lighthearted look at the ways that domain data aids various kinds of investigations. However, there’s really nothing funny about hacking, cyber espionage, or all-out cyber warfare. The outstanding investigative team at FireEye has recently published reports on […]

Continue Reading

Holy Whois, Batman! Beware Phony Domain Registrants

Holy Whois, Batman! Beware Phony Domain Registrants

| November 25, 2014 | 0 Comments

If you’ve spent much time looking at domain records to hunt down or characterize cybercriminals, you have almost certainly encountered some clearly falsified domain registrations. We decided to have a little fun by digging into some (ahem) unlikely domain registrants showcased below, with some more serious points about domain registration and cybercrime along the way. […]

Continue Reading

Notes from the field: SecureWorld Seattle

Notes from the field: SecureWorld Seattle

| November 18, 2014 | 0 Comments

SecureWorld puts on several shows throughout the year, but everyone says the Seattle show is “the one to be at.” And after attending our second straight SecureWorld Seattle conference, we thought we’d share with you a few notes on the event. DomainTools was well-represented with a new booth and an energetic delegation. There was no way you could […]

Continue Reading