THE IONIX BLOG

Tal Zamir
August 5, 2025

Remote DNS Manipulation at Scale: How IONIX Uncovered 20,000 Malicious Subdomains from a Single Abused NS Record 

Our threat-hunting team just uncovered a mass-produced remote DNS-manipulation campaign that hijacked an entire nameserver (NS) delegation belonging to a Fortune 500 company. Within hours, the attacker used that foothold to create over 9,500 brand-new subdomains, all resolving to the same criminal infrastructure serving illicit gambling pages. Reverse-IP analysis shows the same host is already…
Read more

EDITORS PICKS

Amit Sheps
July 2, 2025

Introducing the IONIX & Cloudflare Integration: Complete External Exposure Management and Protection

Amit Sheps
June 18, 2025

Announcing IONIX + Wiz: Bridging the Gap Between Security Validation and Cloud Security

Amit Sheps
November 19, 2024

IONIX Launches Cloud Exposure Validator: Bringing CTEM to Cloud Security

Fara Hain
February 5, 2025

What Is CTEM? Understanding Gartner’s CTEM Framework

Amit Sheps
March 6, 2024

Security Validation Explained: A Trusted Path to Risk Reduction

THE LATEST FROM IONIX >>

LATEST

  • Why Gartner Declared EASM Obsolete Before It Became Mainstream
    Marc Gaffan
    August 11, 2025

    Why Gartner Declared EASM Obsolete Before it Became Mainstream 

  • CVE‑2025‑54253-CVE‑2025‑5425.
    Fara Hain
    August 7, 2025

    CVE‑2025‑54253 & CVE‑2025‑54254 in Adobe Experience Manager Forms – What You Must Know

  • Remote DNS Manipulation at Scale
    Fara Hain
    August 5, 2025

    Remote DNS Manipulation at Scale: How IONIX Uncovered 20,000 Malicious Subdomains from a Single Abused NS Record 

  • How DevOps Teams Can Use IONIX
    Fara Hain
    July 31, 2025

    How DevOps Teams Can Use IONIX for Zero-Fuss Daily Ops 

  • Cybersecurity best of breed
    Fara Hain
    July 22, 2025

    Are “Best-of-Breed” Cyber Security Products Reclaiming the Spotlight? 

  • CVE-2025-53770 Exploit Validation
    Fara Hain
    July 20, 2025

    Microsoft SharePoint CVE-2025-53770: Actively Exploited Remote Code Execution via Insecure Deserialization

  • Fara Hain
    July 20, 2025

    CVE-2025-54309: Critical Admin Access Vulnerability in CrushFTP – What You Need to Know and Do

  • RIP EASM
    Marc Gaffan
    July 8, 2025

    RIP EASM – Gartner Declared EASM Obsolete, Now What?

  • Amit Sheps
    July 2, 2025

    Introducing the IONIX & Cloudflare Integration: Complete External Exposure Management and Protection

  • Ionix and Wiz partnership logo
    Amit Sheps
    June 18, 2025

    Announcing IONIX + Wiz: Bridging the Gap Between Security Validation and Cloud Security

  • Exploited! Warning sign about Grafana security vulnerability CVE-2025-4123, requiring a high severity security fix.
    Amit Sheps
    May 22, 2025

    Exploited! Grafana CVE-2025-4123 – Open Redirect & Stored XSS Give Attackers a Springboard Into Your Cloud

  • Urgent security alert from Ionix regarding zero-day vulnerabilities CVE-2025-4427 and CVE-2025-4428 affecting Ivanti EPMM, allowing authentication bypass and remote code execution.
    Amit Sheps
    May 18, 2025

    Exploited! Ivanti EPMM Authentication Bypass & Remote Code Execution (CVE-2025-4427 & CVE-2025-4428)