20 September 2023
Interisle's Andy Malis Awarded 9th Patent
Andy Malis was granted US Patent 11,750,517 on September 5, 2023, Service Function Chaining Congestion Feedback. This patent adds a method
of reporting downstream congestion to Service Function Chaining (SFC) as defined by the Internet Engineering Task Force (IETF).
SFC enables network operators to offer various value-added services to their customers, such as deep packet inspection, parental controls,
traffic optimization, and network address translation without the need for specialized network elements to provide these services.
This patent extends these capabilities with the ability to report downstream congestion to upstream devices so that they may address
9 August 2023
Phishing Landscape 2023
Interisle Consulting Group has published a major new research report,
Phishing Landscape 2023: An Annual Study of the Scope and Distribution of Phishing.
Interisle has collected more than 11 million phishing reports over a three-year period, showing a tripling of phishingn attacks since May 2020, and a 65% increase since the previous yearly study.
The number of unique domains names continues to increase.
90% of phishing domains in new gTLDs are in just 25 new gTLDs.
Two-thirds of phishing domain names were registered specifically for phishing.
The report includes recommendations for registries and registrars, emphasizing that mitigation requires cross-industry collaboration.
Absent effective mitigation, litigation has yielded results — when Freenom stopped offering domain names, the number of Freenom domains used for phishing plummeted.
31 May 2023
Interisle research on display at Krebs on Security
American journalist and investigative reporter Brian Krebs cited data and findings from Interisle's 2021 Phishing Landscape Study in a March 7 column,
‘Sued by Meta, Freenom Halts Domain Registrations’.
Following several exchanges on Mastodon, Brian took a deeper dive into Freenom's Freefall
with Interisle partners Dave Piscitello and Colin Strutt. Brian then published a follow-up piece,
‘Phishing Domains Tanked After Meta Sued Freenom, where he shares
charts and trendlines prepared by Colin using data collected at the Cybercrime Information Center and observations by Dave
on why legal action may be an effective recourse for brands targeted by phishers.
15 April 2023
Interisle's Andy Malis Awarded 8th Patent
Andy Malis was granted US Patent 11,616,717 on March 28, 2023, Service Function Chaining Network Services. This patent adds quality of service
capabilities to Service Function Chaining (SFC) as defined by the Internet Engineering Task Force (IETF). SFC enables network operators to offer
various value-added services to their customers, such as deep packet inspection, parental controls, traffic optimization, and network address
translation without the need for specialized network elements to provide these services. This patent extends these capabilities with a table-driven
approach to provide various qualities of service to network packets.
16 March 2023
Interisle Welcomes New Associate Karen Rose
No, not the romantic suspense author who wrote Cold Blooded Liar-the internationally recognized Internet policy and digital economy expert
who served as Senior Director of Strategy and Analysis at the Internet Society. Karen's 30 years of public and private sector experience
and her reputation for insightful analysis of global Internet issues extend and amplify Interisle's ability to provide authoritative advice
to its clients. You can watch her describe ICANN's relationship with the U.S. Government—and her role in creating it—in
this interview for the ICANN History Project.
14 March 2023
Malware Landscape 2023
Interisle Consulting Group has published a major new research report,
Malware Landscape 2023: A Study of the Scope and Distribution of Malware.
Interisle reviewed over 7 million reports of distinct malware events from January 2022 to December 2022 collected
by the Cybercrime Information Center, examining malware that
attacks both IoT and user-attended devices ("endpoints"). This year Interisle also studied reports of malicious traffic sources:
malware that is used to scan web sites for exploitable vulnerabilities, to inject malicious content into web forms, or to conduct
denial of service attacks.
9 March 2023
Interisle's Andy Malis Awarded 7th Patent
Andy Malis was granted US Patent 11,582,148 on February 14, 2023, MPLS Extension Headers for In-Network Services. This patent describes methods and devices
(e.g., routers) that add in-network services to a multiprotocol label switching (MPLS) network. This can include an MPLS network router receiving and modifying
a packet by adding one or more MPLS extension headers, adding one or more extension header(s), and adding an indication within an MPLS label stack that one
or more MPLS extension headers have been added to the packet.
28 February 2023
Another Quarter's Malware Analyzed
Analysis of the October to December 2022 malware data from the
CyberCrime Information Center shows a 34% increase in IoT malware and a 31% increase in endpoint malware
compared to the previous quarter. Mozi is on the rise again, and vulnerability scanners are running rampant. Also noteworthy, there was a 121% increase in domains names
reported for hosting malware.
23 September 2022 (Updated 1 November)
Dave Piscitello to present at M3AAWG
Dave Piscitello will present findings and recommendations from two recent Interisle studies of phishing and malware at the M3AAWG meeting in October.
Data from three million phishing reports, as well as analysis and recommendations about two and a half million records of malware will be shared.
Update: 1 November 2022
Anne Price summarized Dave's presentation in a M3AAWG blog post,
"Coordinated Action is Needed as Phishing and Malware Attacks Skyrocket; Domains, Brands and Services Targeted".
10 August 2022
Making the Internet a More Secure Place
David Strom interviews Dave Piscitello for Czech company Avast's popular
where he reviews Interisle's 2022 Phishing Landscape Study. Strom notes that "What makes [the] report
especially powerful is that it includes data from four commercial information sources" and the two Davids discuss the merits/benefits when organizations
employ more than one blocklist in their antiphishing defenses.
1 March 2021
Interisle Launches the Cybercrime Information Center
Cybercrime—phishing, pharming, botnets, malware, and spam—threatens every Internet user. To fight cybercrime we need to know how criminals acquire
and use the Internet resources that enable their criminal activity. The Cybercrime Information Center
(CIC) will gather and publish the facts about cybercrime. By publishing its measurement data, the Center will identify the sources and mechanisms of
cybercrime, as defined in the Council of Europe's Budapest Convention
on Cybercrime. Researchers, governments, businesses, and others will be able to use CIC data to evaluate the policies and practices that attract and encourage