小蚂蚁

@apnic @Xlab_qax 👍

Internet #security risks are constant and expensive. Below are the top three posts related to security for 2025. blog.apnic.net/2026/01/02/thr…

Cloudflare's domain ranking shows that domains related to the #kimwolf botnet have risen to the top position. The samples feature reverse proxy, backdoor, and DDoS functionalities. C2: lolxdhaha.xdhahalol.14emeliaterracewestroxburyma02132[.su

IP addresses through 2024 | APNIC Blog blog.apnic.net/2025/01/13/ip-…

DNS evolution | APNIC Blog blog.apnic.net/2024/07/01/dns…

Deep dive into China's NXDOMAIN data | APNIC Blog blog.apnic.net/2024/02/21/dee…

Our new blog article, which examines the high volume of invalid DNS queries that we observes in china, we compared the similarities and differences between data in China and from the root DNS system, highlighting unique trends and errors. blog.xlab.qianxin.com/deep-dive-into…

DNS 是新的 BGP | APNIC 博客 blog.apnic.net/2023/09/22/dns…

How accurate are IP geolocation services? | APNIC Blog blog.apnic.net/2020/09/15/how…

Improving SSH's security with SSHFP DNS records | APNIC Blog blog.apnic.net/2022/12/02/imp…

Address space fragmentation | APNIC Blog blog.apnic.net/2022/09/27/add…

DNS evolution: Innovation or fragmentation? | APNIC Blog blog.apnic.net/2022/09/30/dns…

Today, #ICANN launched KINDNS, a new initiative to promote Domain Name System (DNS) operational security best practices and to encourage DNS operators to voluntarily commit to their implementation. Read the announcement & learn more about KINDNS> go.icann.org/3AP21ql @4KINDNS

The path to resolverless DNS | APNIC Blog blog.apnic.net/2022/05/17/the…

@apnic @360Netlab why reposted an article from a year ago again?

Analysing hundreds of billions of daily DNS queries to produce actionable threat intelligence. #Skidmap and malicious DNS data mining by @360Netlab's Zhang Zaifeng: blog.apnic.net/2021/04/19/ski… #Malware #threatintelligence #Throwback

Three of the best: Security | APNIC Blog blog.apnic.net/2021/12/29/thr…

@360CoreSec 好，感谢

@redbad2 是C2地址，硬编码在样本中

#APT #StrongPity MD5: 3118385afbd4ebef45b7b230cd5a643e C2: cdn2-state-upd[.]com

@dnsoarc @PacketPusher @huitema Judging from the existing data, it feels like a specific application, not like some malicious program. On this topic, can you provide more sample data? It would be better if the time dimension is included😀

@PacketPusher @huitema One interesting finding is that the traffic observed was observated at the Root Servers, but not in TLDs like .COM or .NET #DNS #LoveDNS #OARC35a ^MV

At 15:25 UTC Duane Wessels @packetpusher and Christian Huitema @huitema are presenting More Mysterious Root Query Traffic from a Large Recursive Operator Slides: indico.dns-oarc.net/event/39/contr… #DNS #LoveDNS #OARC35a ^MV

@xuy1202 miner.oldace[.]xyz, raylee.5166[.]info, fee.oldace[.]xyz, gw.oldace[.]xyz 跟这些应该都是一伙儿的。

#ThreatHunting suspicious #miner miner.awayfar[.]top