====== Infoblox Threat Intel ======

[[https://www.infoblox.com/threat-intel/|InfobloxThreat Intel homepage]].


===== Technology =====

  * [[https://blogs.infoblox.com/cyber-threat-intelligence/false-positives-are-overrated/|False Positives are Overrated]] - Feb 2023
  * [[https://blogs.infoblox.com/security/deadly-combo-mfa-lookalike-domains/|MFA & Lookalikes]] - June 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/introducing-dns-threat-actors/|DNS Threat Actors]] - Sep 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/lookalike-domain-attacks-are-on-the-rise-be-on-the-lookout-for-these-four-types/|Lookalike Domains]] - Oct 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/rdgas-the-new-face-of-dgas/|RDGA]] - Oct 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/phishers-weather-the-storm-the-dns-landscape-of-us-postal-smishing-attacks/|Suspicious Domains (US Postal Smishing)]] - Dec 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/ivanti-connect-secure-vpn-exploitation-correctly-interpreting-dns-iocs/|Don't be too quick to bloc IoC]] - Feb 2024

===== Specific Threats =====
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/cyber-threat-advisory/dog-hunt-finding-decoy-dog-toolkit-via-anomalous-dns-traffic/|Decoy Dog 1]] - April 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/decoy-dog-is-no-ordinary-pupy-distinguishing-malware-via-dns/|Decoy Dog 2]] - July 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/cyber-threat-advisory/vextrio-deploys-dns-based-tds-server/|Vextrio 1]] - Aug 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/cybercrime-central-vextrio-operates-massive-criminal-affiliate-program/|Vextrio 2]] - Jan 2024
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/black-basta-anatomy-of-the-attack/|Black Basta]] - May 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/open-tangle-creates-a-phishing-net-for-consumers/|OpenTangle]] - Oct 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/prolific-puma-shadowy-link-shortening-service-enables-cybercrime/|Prolific Puma]] - Oct 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/dns-early-detection-romcom/|RomCom]] - Nov 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/dns-for-early-detection-lazarus-kandykorn/|KandyKorn]] - Dec 2023
  * [[https://blogs.infoblox.com/cyber-threat-intelligence/beware-the-shallow-waters-savvy-seahorse-lures-victims-to-fake-investment-platforms-through-facebook-ads/|Savvy Seahorse]] - Feb 2024
  * [[https://insights.infoblox.com/resources-report/infoblox-report-muddling-meerkat-the-great-firewall-manipulator|Muddling Meerkat]] - April 2024
  * [[https://insights.infoblox.com/resources-research-report/infoblox-research-report-registered-dgas-the-prolific-new-menace-no-one-is-talking-about|Resolver Rabbit]] - June 2024
  * [[https://insights.infoblox.com/resources-report/infoblox-report-vigorish-viper-a-venomous-bet|Vigorish Viper]] - July 2024
  * [[https://blogs.infoblox.com/threat-intelligence/who-knew-domain-hijacking-is-so-easy/|Sitting Ducks & Vacant Viper]] - July 2024 

===== Infoblox Threat Reports =====
[[infoblox:whitepapers#threat_reports|Here]].

===== Other =====
  * [[https://www.techtarget.com/searchsecurity/feature/Why-the-Keitaro-TDS-keeps-causing-security-headaches|KeitaroTDS Profile]] (Vextrio) - April 2024