security Archives | APNIC Blog

Internet routing as supply chain risk

By Dan Fidler on 26 Feb 2026

A new paper from MANRS suggests enterprise demand may be the missing driver for stronger routing security.

DNSSEC and PQC: The practical impact of increased TCP in DNS

By Eline Stehouwer on 19 Feb 2026

Guest Post: Evaluating the performance implications of increased TCP usage on authoritative nameservers.

On misusing transparent DNS forwarders For amplification attacks

By Maynard Koch on 12 Feb 2026

Guest Post: Research shows the threat vector introduced by transparent DNS forwarders that enable access to shielded recursive resolvers, and scale better in terms of potential attack volume.

From spoofing to tunnelling: New Red Team networking techniques for initial access and evasion

By Shu Hao Tung on 16 Jan 2026

Guest Post: In modern network architecture, we often assume that perimeter defences are robust enough to keep internal traffic secure. However, vulnerabilities inherent in the trust mechanisms of fundamental network protocols reveal that unencrypted tunnels can become fatal backdoors in enterprise intranets.

What we learned from 63,000 attacks in 12 days on APNIC Honeynet sensors at University of Dhaka

By Md Mahedi Hasan on 14 Jan 2026

Guest Post: After twelve days, and 63,247 attacks later, we are confident recommending some steps you can take to protect your own network.

Three of the best: Security

By Timothy Hildred on 2 Jan 2026

Internet security risks are constant and expensive. Here are the top three posts related to security for 2025.

The IPv4 address swamp: The new normal

By John Kristoff on 23 Dec 2025

Guest Post: Has IPv4 allocation improved in the 21st century, or are prefixes becoming smaller and more fragmented? What are the potential impacts on Internet security?

What training topics can tell us about regional Internet infrastructure priorities

By Sheryl Hermoso on 22 Dec 2025

A closer look at which training was offered and where gives an interesting picture of the technical skills development priorities in the Asia Pacific region.

Journeys in hosting 1/x — Precomputed SSH host keys

By John Kristoff on 18 Dec 2025

Guest Post: An investigation into LightNode’s curious use of precomputed SSH host keys — a small operational quirk with security implications.

21 years and counting of ‘eight fallacies of distributed computing’

By George Michaelson on 8 Dec 2025

Eight long held and common beliefs about the network have been shown, time after time, to be false. What are they, and what do they mean?