DNS records (part 3) – The final pluck
In the final (?) part of our investigation into abandoned DNS records and the risk that they present to organisations, we’ll review ‘elastic’ IP addresses
Menu
Do more business
more securely
DotSec is a professional information security organisation that works with national and international clients across most industry sectors and all tiers of government
News and updates
Still dangling! (DNS records – part 2)
In our previous post, we examined the risks of leaving ‘dangling’ CNAME records pointing to DNS zones which are not under the domain-owner’s sole control.
DNS records – abandon at your peril
Recently, there has been some interesting news describing how attackers have been able to take over various subdomains by taking advantage of abandoned DNS records.
The sky is falling!
As you will be aware of by now, the Prime Minister warned Australians of a “sophisticated, state-based cyber actor” targeting Australian organisations and all tiers
Scareware v1 – Just silly… probably
Along with lots of other people on the Internet, you’ve probably received an unsolicited email, not only threatening you but claiming to have stolen your
It’s not what you know…
(Actually, that’s exactly what it is!) Monitoring eCommerce sites for compromise DotSec knows that securing eCommerce sites properly can be tricky. Various best-practice guides to
Contact us! We're keen to help
DotSec is a professional information security organisation. Since the late 20th century, we have assisted national and international clients across most industry sectors. We also provide assistance to all tiers of government.
DotSec is a Payments Card Industry (PCI) Qualified Security Assessor (QSA) company and provides ISO/IEC 27001 implementation and preparedness services. DotSec provides audit and remediation advice for APRA’s CPS 234 and ACCC’s CDR. We have a strong IRAP history, assisting companies to become compliant with controls from Australian federal government’s Information Security Manual (ISM) and Protective Security Policy Framework (PSPF). DotSec infosec professionals are certified AWS and Splunk Architects and have a strong history in the design, delivery and management of secure-hosting services for national brands and government.
And DotSec is a signatory to the Queensland Government’s standing offer arrangement for the provision of ICT Services (ICTSS.13.03), and is an accredited GITC (number Q-2554) and QAssure-registered (number 11818) company.
Email us: Our address is ‘enquiries[AT]dotsec.com’
Come for a visit: Level 2, 303 Adelaide St., Brisbane City, Australia.
Telephone us: Our main number is: +61 7 3221 2442.
Fax: Fax? We don’t have a fax!… So 20th century!
Post us a snail mail: PO Box 10286, Adelaide Street, Brisbane, 4000. Australia.