“The US National Security Agency (NSA) says that companies should avoid using third party DNS resolvers to block threat actors’ DNS traffic eavesdropping and manipulation attempts and to block access to internal network information.”
Uncle Sam to agencies: No encrypted DNS for you!
“The US federal government has been protecting its users by blocking malicious destinations for years, but it won’t let them take advantage of the latest protective measure in DNS – encryption – just yet.”
Ongoing DNS hijacking campaign targeting consumer routers
“Over the last three months, our honeypots have detected DNS hijacking attacks targeting various types of consumer routers. All exploit attempts have originated from hosts on the network of Google Cloud Platform (AS15169).”
Performance of Iodine over DNS-over-HTTPS
“Iodine is a DNS-tunnel that can be used to send TCP traffic encapsulated in DNS queries. Sometimes, this helps to bypass captive portals or otherwise restricted networks. In this blogpost I’ll test the performance of using Iodine in combination with DoH (DNS-over-HTTPS).”
ICANN: There is an ongoing and significant risk to DNS infrastructure
“The Internet Corporation for Assigned Names and Numbers (ICANN), the organization in charge of the internet’s Domain Name System (DNS) infrastructure, has issued a foreboding warning on Friday about the dangers facing the DNS system.”