Infoblox Blog

Recent Blogs

Pig Butchering Scams and Their DNS Trail: Linking Threats to Malicious Compounds
Author: Maël Le Touz and John Wòjcik After uncovering Vigorish Viper in June of 2024, we kept following the DNS trail and have discovered dozens of other actors involved in illegal activities in Southeast Asia. While we spend our days knee-deep in domains related to these threats, there is a rich human story behind […] The post Pig Butchering Scams and Their DNS Trail: Linking Threats to Malicious Compounds appeared first on Infoblox Blog.
Smarter Threat Response with Infoblox and Palo Alto Networks
Unlocking DNS Intelligence For Faster, Automated SecOps Infoblox integrates with Palo Alto Networks Cortex XSIAM and XSOAR to deliver deep DNS-layer visibility, enriched threat intelligence and automated workflows that accelerate threat detection and response. Security teams rely on both platforms to reduce risk and streamline operations. Cortex XSIAM ingests Infoblox telemetry, including DNS queries, DHCP […] The post Smarter Threat Response with Infoblox and Palo Alto Networks appeared first on Infoblox Blog.
Turning Remembrance into Action: Infoblox’s National Day of Service with 9/11 Day
On September 11, the anniversary of a day etched into our collective memory, we at Infoblox chose to transform remembrance into a powerful force for good. For the second consecutive year, we proudly partnered with the 9/11 Day organization for their National Day of Service, an initiative that unites communities across the country to honor […] The post Turning Remembrance into Action: Infoblox’s National Day of Service with 9/11 Day appeared first on Infoblox Blog.
Detour Dog: DNS Malware Powers Strela Stealer Campaigns
Tens of thousands of websites worldwide are infected with malware that utilizes the Domain Name System (DNS) to conditionally redirect visitors to malicious content. These DNS requests are made server-side, meaning from the website itself, and are not visible to the visitor. We have tracked the threat actor that operates this malware since August 2023. […] The post Detour Dog: DNS Malware Powers Strela Stealer Campaigns appeared first on Infoblox Blog.
Supercharge Cyber Resilience with Infoblox + Rapid7 Integration
Turning DNS Intelligence Into Real-time Defense In today’s high-speed digital world, security teams are under pressure to move fast. They need to detect, respond to and remediate threats with precision and urgency. The integration of Infoblox Threat Defense™ with Rapid7 Nexpose and InsightVM delivers exactly that. It brings together predictive threat intelligence, DNS-based analytics and […] The post Supercharge Cyber Resilience with Infoblox + Rapid7 Integration appeared first on Infoblox Blog.
Delivering Anycast DNS in AWS with Infoblox Universal DDI™ and AWS Cloud WAN
Introduction Over the past few months, in conversations I’ve had with enterprises running workloads across multiple regions and hybrid clouds, one theme kept coming up: DNS keeps biting them. Everyone wants the same thing: consistent, resilient DNS services that “just work” everywhere. But when you start layering in multi-cloud topologies, global reach and the need […] The post Delivering Anycast DNS in AWS with Infoblox Universal DDI™ and AWS Cloud WAN appeared first on Infoblox Blog.
Infoblox and Google Cloud: Delivering Preemptive DNS Security
AI-Driven Cyber Threats is the New Normal Cybercrime is accelerating at an unprecedented pace. Global damages are projected to soar to $23 trillion by 2027,1 and threat actors are using AI to make attacks more prolific, stealthy and evasive. Attackers can now generate unique, one-time-use malware that renders traditional defense insufficient. To effectively defend against […] The post Infoblox and Google Cloud: Delivering Preemptive DNS Security appeared first on Infoblox Blog.
Deniability by Design: DNS-Driven Insights into a Malicious Ad Network
Executive Summary One typically imagines the digital underworld—trojans, malware droppers, fake dating sites, investment scams, and more—as operating in the dark corners of the internet. But increasingly, these threats are hiding in plain sight, camouflaged by the glossy veneer of mainstream digital advertising. In some cases, the adtech platforms are abused, but we have uncovered […] The post Deniability by Design: DNS-Driven Insights into a Malicious Ad Network appeared first on Infoblox Blog.
Introducing Infoblox Tokens: Preemptive Security on Your Terms
Have you ever wished your security licensing could keep up with the ever-changing threat landscape and your evolving needs? Then listen up. On September 1, 2025, Infoblox introduced token-based licensing for our security portfolio. That includes Infoblox Threat Defense™, Dossier, Lookalike Domain Monitoring, SOC Insights and more. Instead of rigid SKUs and fixed entitlements, tokens […] The post Introducing Infoblox Tokens: Preemptive Security on Your Terms appeared first on Infoblox Blog.
Operationalize Protective DNS Step-by-Step
Protective DNS Challenges Preemptively blocking connections to threat-related domains is a highly attractive opportunity for security teams of all sizes—one also promoted by standardization bodies like the National Institute of Standards and Technology (NIST), with the latest version of NIST Special Publication (SP) 800-81 Revision 31 serving as a key proof point. The technology enabling […] The post Operationalize Protective DNS Step-by-Step appeared first on Infoblox Blog.
Rethinking Critical Infrastructure: The Strategic Case for Decoupling DNS/DHCP from Identity Services
In today’s interconnected enterprise environments, the stability and security of network services and infrastructure directly impact business continuity and resilience. Among the most critical yet often overlooked components of the network are Domain Name System (DNS) and Dynamic Host Configuration Protocol (DHCP) services. These services form the foundation upon which virtually all digital operations depend. […] The post Rethinking Critical Infrastructure: The Strategic Case for Decoupling DNS/DHCP from Identity Services appeared first on Infoblox Blog.
Unlocking Instant Visibility on Impacted Assets with Asset Workspaces: SOC Transformation Starts Here
“Yes, you are blocking … but what device? Firewall? Laptop? Server? We are spending too much time on research instead of immediately actionable data.” — Director of SecOps, Insurance (fictionalized quote based on real feedback) Security teams are not short on alerts, but what they truly lack is clarity. The real challenge is not just […] The post Unlocking Instant Visibility on Impacted Assets with Asset Workspaces: SOC Transformation Starts Here appeared first on Infoblox Blog.

View All