Articles about Verisign


Verisign opens up its DNS

Verisign is throwing its hat into the “free DNS” ring, promising not to retain information about recursive requests to its just-launched service. Verisign Public DNS is at /, alas nowhere near as easy for people to remember as Google's / In the blog post launching the service, the director …

Dot-com da-bomb Verisign fires off an OpenDNS rival

Operator of the dot-com registry Verisign has launched a rival to popular online security service OpenDNS, called DNS Firewall. Announcing the service in a blog post, Verisign's Michael Kaczmarek said that protecting a company from cyberattacks was "becoming increasingly difficult and expensive," and pointed out that hackers …
Kieren McCarthy, 08 Jul 2015
Sergey Brin

Verisign sues Google's new love-interest .XYZ for a second time

Verisign is up to its old tricks again, having sued, the owner of the .xyz registry a second time. Barely a day after got a boost when Alphabet, Google's new parent company, set up shop at, details emerged of a suit filed by Verisign against, its CEO Daniel Negari, and CentralNic,'s back …
Kieren McCarthy, 14 Aug 2015
David and Goliath in the Valley of Elah

Who's un-dot-pressure? .com overlord Verisign sues .xyz kingpin

Dot-com registry operator Verisign is suing the largest new gTLD registry, dot-xyz, alleging false advertising. In its lawsuit filing [PDF], submitted to the eastern district court of Virginia, Verisign claims the biz behind .xyz has violated the Lanham Act, which outlaws trademark infringement and false advertising. Dot-xyz is …
Kieren McCarthy, 25 Feb 2015
Total War: Shogun 2

WHY are GoDaddy and Verisign stockpiling patents? Do I smell war?

A raft of patent applications has presaged a possible legal war in the rapidly expanding domain-name industry. This year alone, market-leading registrar GoDaddy has applied for no less than eight patents specific to the DNS world, covering everything from searching for a domain name to register, to recommending a specific domain …
Kieren McCarthy, 04 Mar 2015

ICANN's technical competence queried by Verisign report

EXCLUSIVE A review of the globe's DNS security, stability and resiliency by dot-com registry and root server operator Verisign has called into question the technical competence of domain name overseer ICANN. The 33-page document, seen by The Register and due to be published soon, comes just days after the news emerged that ICANN's staff …
Kieren McCarthy, 24 Dec 2014
The Register breaking news

ICANN under fire as Verisign warns of rushed domain-name expansion

ICANN's big generic top-level domain (gTLD) rollout, planned for April 23, needs to be delayed because the system isn't ready, Verisign and others are warning – and ICANN itself has told The Register that the first gTLD domains won't come online until at least August. "April is a launch date in the sense that it's a public …
Iain Thomson, 02 Apr 2013

US government tweaks internet handover date: 1 October 2016

The US government will officially hand over control of the top level of the internet on 1 October 2016 – a year later than planned. The Department of Commerce announced on Monday that it will extend the IANA contract, today held by domain overseer ICANN, by one year, meaning that it will expire on 30 September 2016. At that …
Kieren McCarthy, 17 Aug 2015

Drupal flicks fix to nix OpenID admin account hijack hole

Drupal has shuttered a flaw in its implementation of OpenID that allows attackers to log in as web site administrators. The flaw (CVE-2015-3234) is the most critical of four and affects versions six and seven of the content management system. Drupal's security team say attackers can target unpatched systems if they hold an …
Darren Pauli, 19 Jun 2015
REM's Shiny, Happy People

Fizzy bubbles at the ready: Dot-com celebrates 30th birthday

In 1985 most commercial internet users were US government contractors, but all of that was set to slowly change after Symbolics became the first company to register a dot-com domain name. Thirty years on, the total number of registered top-level domains (TLDs) surpassed 288 million at the end of 2014, according to the latest …
Kelly Fiveash, 14 Mar 2015

Duqu 2.0‬ malware buried into Windows PCs using 'stolen Foxconn certs'

The super-sophisticated malware that infiltrated Kaspersky Labs is craftier than first imagined. We're told that the Duqu 2.0 software nasty was signed using legit digital certificates issued to Foxconn – a world-leading Chinese electronics manufacturer, whose customers include Microsoft, Dell, Google, BlackBerry, Amazon, Apple …
John Leyden, 15 Jun 2015

DNS root zone drama: Follow live the most important dullest ceremony you'll ever see

If you have literally nothing better to do today, we would recommend watching the most important but dullest ceremony you can catch online. The eight-hour event is taking place today in Los Angeles and is being streamed live – just like the Oscars. Although without the music, or famous people, or speeches, or ball gowns. OK, …
Kieren McCarthy, 13 Aug 2015
The Register breaking news

Dotcom hike will net MEEELLIONS of bucks for Verisign, ICANN

The cost of a .com domain name is expected to rise by at least 31 per cent over the next six years, due to new price-increasing powers granted to registry operator Verisign by industry overseer ICANN. ICANN last night published a proposed draft of a new .com Registry Agreement, which it had negotiated privately with Verisign …
Kevin Murphy, 28 Mar 2012
Internet email sign. Pic: @mattw1lson, Twitter

Next-gen secure email using internet's own DNS – your help needed

A group of researchers from the US government and dot-com operator VeriSign are working on a new system for secure email: using domain names. Highlighting the problems and security holes associated with current mail systems, the team from the National Institute of Standards and Technology (NIST), a subset of the US Department …
Kieren McCarthy, 03 Aug 2015
The Register breaking news

Verisign admits 2010 hack attack, mum on what was nicked

Verisign has admitted in an SEC filing that it suffered numerous data breaches in 2010, but that management wasn’t informed by staff for nearly a year after they occurred. In the 10-Q filing, the company said that it suffered multiple data breaches during 2010, and that data was stolen. Exactly what is missing the company isn’t …
Iain Thomson, 02 Feb 2012

D-Link spilled its private key onto the web – letting malware dress up as Windows apps

Updated Taiwanese networking kit maker D-Link leaked a private code-signing key onto the internet for anyone to download. This is rather embarrassing because this key can be used to trick Windows computers into trusting and running malware. An eagle-eyed netizen told on Thursday that the code-signing key appeared in a …
Chris Williams, 18 Sep 2015
The Register breaking news

VeriSign demands website takedown powers

VeriSign, which manages the database of all .com internet addresses, wants powers to shut down "non-legitimate" domain names when asked to by law enforcement. The company said today it wants to be able to enforce the "denial, cancellation or transfer of any registration" in any of a laundry list of scenarios where a domain is …
Kevin Murphy, 11 Oct 2011
The Register breaking news

VeriSign to raise .com, .net prices

VeriSign has announced plans to raise the price of .com and .net domain names again. The .net price increase comes just a few weeks after the company renewed its registry contract with industry overseer ICANN. From 15 January, 2012, the company said that it intends to charge $7.85 for a .com, up from $7.34, and added that .net …
Kevin Murphy, 18 Jul 2011

FACEPALM! HP cert used to sign malware

HP accidentally signed some malware, according to Krebs on Security. Krebs reports that the certificate was “used to cryptographically sign software components that ship with many of its older products”, mostly for PC software, but that back in 2010 it was also used to sign some malware. HP will therefore revoke the certificate …
Simon Sharwood, 12 Oct 2014
The Register breaking news

Symantec lays out $1.3bn to buy VeriSign's security business

Symantec has bought VeriSign's identity and authentication business for approximately $1.28bn in cash. The deal, announced Wednesday, will see the security giant snapping up Verisign's Secure Sockets Layer certificate services, the Public Key Infrastructure services and VeriSign Identity Protection (VIP) authentication service …
John Leyden, 20 May 2010
The Register breaking news

US shuts down Canadian gambling site with Verisign's help

The Department of Homeland Security has seized a domain name registered outside of the US, by individuals who are not American citizens, and who registered with a Canadian registrar. What is unique about this case is that the American authorities did not get the domain's registrar - a Canadian company - to pull the domain. …

AT&T snaps up VeriSign's security consulting biz

US carrier AT&T has agreed a deal to acquire VeriSign's security consulting business. Financial terms of the agreement were not disclosed. VeriSign’s global security consulting operations will be matched alongside AT&T's existing suite of network-based cybersecurity services. For VeriSign the deal represents an opportunity to …
John Leyden, 02 Oct 2009

Dot-com is dead. Long live dot-com

As you probably know, the internet's domain names are dominated by a single three-letter ending: "com". What you probably don't know is the sheer scale of dot-com's dominance. There are roughly 116.5m domains ending in ".com" – more than all of the 25 next largest registries combined. When the industry draws bar charts of …
Kieren McCarthy, 24 Jan 2015
Photo of Mark Shuttleworth at CeBIT 2014

Ubuntu daddy Mark Shuttleworth loses fight to cancel $20m bank fee

Mark Shuttleworth has lost his long-running fight to reverse a US$20m (£12.8m) bank charge levied after he transferred a fortune out of South Africa. In 2001, Shuttleworth, the founder of Ubuntu Linux maker Canonical, emigrated from his home nation of South Africa to the Isle of Man. In 2008, he tried to withdraw R2.5bn (US$204m …
Shaun Nichols, 19 Jun 2015

It's nearly 2015 – and your Windows PC can still be owned by a Visual Basic script

Microsoft has patched 25 software vulnerabilities – including bugs that allow hackers to hijack PCs via Internet Explorer, Word and Excel files, and Visual Basic scripts. Everyone is urged to install the fixes, as well as a batch of updates from Adobe: a flaw in the Flash plugin is already being exploited by hackers to take over …
Shaun Nichols, 09 Dec 2014
Padlocks by Simon Cocks Flickr CC2 license

IoT security is RUBBISH says IoT vendor collective

A vendor group whose membership includes Microsoft, Symantec, Verisign, ADT and TRUSTe reckons the Internet of Things (IoT) market is being pushed with no regard to either security or consumer privacy. In what will probably be ignored by the next startup hoping to get absorbed into Google's Alphabet's Nest business, the Online …

If you read anything today about ICANN taking over the internet, make sure it's this

Analysis The internet community has published its plan to pull the United States government out of its role at the top of the internet's hierarchy. Unfortunately, the near-final version is a hodgepodge of ideas and compromises that fails to address a key aspect of Uncle Sam's role. In addition, the plan substitutes a complex set of …
Kieren McCarthy, 04 Aug 2015

Plan to shift internet's control panel away from US government gets tentative thumbs-up

The plan to shift control of the top level of the internet away from the US government to domain name overseer ICANN has been given a tentative thumbs-up by the internet community. A public comment period on the proposal for the IANA functions contract closed earlier this week with 159 submissions received. Just under half the …
Kieren McCarthy, 11 Sep 2015

Larry Page was held back by Google execs from flooding world with new dot-word domains

Google's new mom, Alphabet, has sent the domain name world into a frenzy following its decision to set up home at the online address But behind the decision lies a deeper truth: Larry Page, as Google CEO, wanted his search giant to go big on new dot-word domain names – like .book or .computer – but was stymied by …
Kieren McCarthy, 13 Aug 2015

Confidential information exposed over 300 times in ICANN security snafu

Two months after claiming there was "no indication" that confidential information was exposed in a security cock-up, domain name overseer ICANN has admitted it happened on at least 330 occasions. Following an audit of its main customer portal, the organization confirmed what we reported at the start of March: that misconfigured …
Kieren McCarthy, 30 Apr 2015
Funnel of cash. Credit: via SXC –

Do you agree with our fee hike? Press 1 to answer Yes; or 2 for Yes

It has long been a concern that domain-name overseer ICANN is largely funded by companies reliant on the organization to make money. Every biz that wishes to sell domain names – called a registrar – has to pay the organization $4,000 a year, plus 18 cents on every domain they sell. In addition, they have to pay a variable fee …
Kieren McCarthy, 29 Sep 2015
The Register breaking news

VeriSign SSL certs open to tampering, competitor warns

VeriSign and one of its partners have come under fire for publicly exposing webpages used to process customer security certificates, a practice a competitor claims puts some of the biggest names on the web at risk of serious targeted attacks. According to Melih Abdulhayoglu, CEO of internet security firm Comodo, publicly …
Dan Goodin, 24 Jun 2010

Cyber-security's dirty little secret: It's not as bad as you think

New research from the Global Commission on Internet Governance has reached a surprising conclusion: cyberspace is actually getting safer. The report [PDF] starts from a simple enough premise: while we are constantly told that incidents of cyberattacks and online security threats are increasing, are they growing relative to the …
Kieren McCarthy, 18 Jul 2015
Mozilla Firefox Fox sitting down

Lazy sysadmins rooted in looming Mozilla cert wipeout

Mozilla is about to revoke some weak X.509 PKI certs, and has warned sysadmins that it will affect the Firefox browser and they'll need to assess their infrastructure. The four affected root certificates from Entrust and ValiCert are marked for removal because they contained weak keys. A further seven from CyberTrust, Thawte …
Darren Pauli, 20 Aug 2014

VeriSign builds out DNS security defences

VeriSign is pushing ahead with plans to make the internet's Domain Name System (DNS) more resilient to internet attacks. But although it will make its upgraded server infrastructure IPv6 and DNSSec ready, the net infrastructure giant reckons the touted performance improvements promised by the protocols have been delivered by …
John Leyden, 18 Jun 2008
The Register breaking news

Mystery over Verisign boss' shock exit

Wall Street shut down for the long July 4 weekend pondering a puzzler. It emerged yesterday that Verisign CEO Bill Roper had suddenly quit the firm to be replaced by the firm's founder and chairman, Jim Bidzos. Roper took the helm at Verisign only last year. The firm said in its statement to investors and the media that he had …
Double Facepalm; when one facepalm is not enough.

ICANN switches off dot-word admin portal amid security leak scare

Global domain-name overlord ICANN has found another security hole in its systems. This time, confidential data on companies vying for new dot-word domains may have been snooped on by rivals logged into ICANN's catch-all portal – meaning commercially sensitive information as well as important technical details on the internet's …
Kieren McCarthy, 02 Mar 2015
The Register breaking news

VeriSign boss signs off

Stratton Sclavos, boss of VeriSign for the last 12 years, has unexpectedly quit the security and domain registrar firm with no explanation. The board announced yesterday he had been replaced with immediate effect by William Roper, an non-executive director who was an EVP at defence contractor firm Science Applications …
The Register breaking news

Verisign signs on to movie download business

SSL certificate flogging firm Verisign will provide the technology behind a new family friendly movie download service launching in the new year. AP reports the firm has done a deal with Axiom Entertainment to distribute kiddie-friendly movies over its peer to peer network. Axiom and Verisign's subscribers will be offered the …
The Register breaking news

Verisign to restate years of financials

The Verisign board has decided to restate more than four years worth of financial reports after an internal review found stock options may have made them unreliable. The investigation by the online transaction security firm's independent directors is ongoing. "Incorrect measurement dates and other administrative inconsistencies …
The Register breaking news

Verisign wastes no time jacking up domain prices

Verisign yesterday announced in a press release that it will raise its registry fees for .com and/or .net domain names by seven per cent to $6.42 on October 15, 2007, as provided for in a controversial contract inked last March between the company and ICANN. Although domain registration fees for the industry as a whole are on …
Burke Hansen, 06 Apr 2007
Data storage everywhere - CD, DVD, DAT, DCC, HDD, MiniDisc, SSD, SD card, floppy, magnetic stripe, barcode

This is what happens when a judge in New York orders an e-hit on a Chinese software biz

Analysis A New York court has tried to knock DVD ripping software biz Fengtao offline by issuing an injunction against its domain names, social networking accounts and online payment systems. Judge Vernon Broderick ordered [PDF] that dozens of domain names including,,,,, …
Kieren McCarthy, 24 Mar 2015

PayPal buys VeriSign payment unit

Paypal is paying $370m for VeriSign's payment portal business. It will incorporate the portal with its merchant services to better target small and medium businesses. The payment gateway provides a way for merchants to add simple, scalable payment pages to their websites. Verisign claims more than $40bn in transactions went …
John Oates, 11 Oct 2005

VeriSign slims, cuts jobs to focus on security

VeriSign is to shed its communication services operation in order to focus on its core businesses of running the .com and .net registries and securing online transactions. The firm also plans to expand its reach into identity protection. The plan, announced Wednesday, which could cut the internet infrastructure giant's workforce …
John Leyden, 15 Nov 2007

Here they come: Dot-word warehouse Donuts to launch new top-level domains this week

Upstart domain registry Donuts has announced that its first seven new global top-level domains (gTLDs) will be made available to the public on Wednesday, with more to come throughout the year. "This is a unique opportunity for businesses, brands, organizations, and individuals to find an online identity that speaks precisely to …
Neil McAllister, 28 Jan 2014
The Register breaking news

BT links arms with Verisign

BT has signed up Verisign to provide mobile content services for its BT Fusion batphone. The services, which include a mobile media portal, are to be developed for new Wi-Fi enabled handsets due to launch on the BT Fusion service later this year. The handsets will sport content such as branded Java games, video downloads, and …
Tim Richardson, 06 Apr 2006
Exit arrow

VeriSign worker exits after laptop security breach

VeriSign has warned workers of the theft of a laptop that contained their personal information. The laptop was stolen from a car parked in the garage of a California worker sometime on the night of 12 July. The laptop contained personal information - name, Social Security number, date of birth, salary information, telephone …
John Leyden, 06 Aug 2007

VeriSign snags iDefense for $40m

Net infrastructure firm VeriSign has bought security intelligence firm iDefense for $40m in cash. iDefense's 45 employees will join VeriSign in a move designed to bolster its managed security services offering with proactive threat warning and security remediation advice. iDefense is best known for its controversial …
John Leyden, 14 Jul 2005
For Sale sign detail

VeriSign buys SSL certs rival for $125m

VeriSign has announced plans to acquire GeoTrust, its largest SSL certificate rival, for approximately $125m in cash. The deal, announced on Wednesday, is expected to close in the second half of this year, subject to regulatory approval. Acquiring GeoTrust, in addition to the 1999 acquisition of Thawte Consulting, would leave …
John Leyden, 18 May 2006
cookies_eyes_privacy evercookies flash cookies

Boffins plot global (browser) cookie crumb trail

Privacy laws covering the use of personally-identifiable information are, on a global scale, creating a dizzying patchwork of cookie-cutter cookie-serving companies created to sniff our Web browsing. That's one conclusion of research led by Marjan Falahrastegar at Queen Mary University, London. The group, which included …