DNS Spy 👀

🚨New free tool: scan your domain for the lookalikes impersonating your brand. Typosquats, homoglyphs, TLD swaps, combosquatting — we generate them all, then live-check DNS + WHOIS to show which are actually weaponized. No signup. Results in seconds 👇 https://t.co/0mQo0X126h

FYI: A vulnerability was found in the domain name system that can be exploited to massively amplify traffic to a victim's DNS server, knocking it offline You need to patch at least: ISC BIND, NLnet labs Unbound, PowerDNS, and CZ NIC Knot Resolver https://t.co/L7pfLmSmny

@RitzmannMarkus Thx, will fix!

As a result, many nameservers worldwide are probably experiencing resolving issues if they run named/bind9.

This is what we're also experiencing, workaround so far has been to disable DNSSEC in the short-term, we're working on a permanent fix.

We were seeing lots of DNSSEC failures across many TLDs about 40 minutes ago. As a result, we marked some domains as offline. We are still investigating the root cause.

Anyone who is using a SHA-1 DNSSEC key algoritm should be upgrading immediately! https://t.co/jfw4esYcT1

The cause was found & fixed: we mistakenly identified some nameservers as offline, which triggered a cascade of alerts. Sorry for all the false alerts, our queues are being drained to send everyone the needed updates!

We are aware that some users received false alerts about changed DNS records and are investigating the incident.