"Nominum is pleased to share the unique insights from this team as part of our inaugural Security Report Data Revelations: Fall 2016. Not surprisingly, the report shows that profit-motivated attackers are often outpacing defenders as they continue to evolve their attacks to avoid countermeasures of the security community. The report investigates the largest threats that affect organizations and individuals, including ransomware, DDoS, mobile malware, IoT-based attacks and more. Based on an analysis of 15 trillion DNS queries between April 1 and August 30 in 2016, the report also aims to provide a timely snapshot of the security landscape between the publishing windows of the semi-annual and mid-year reports from other security vendors. Some key findings: • Nominum sees over 5 million new domains queried daily, the vast majority of which are malicious yet unknown to security vendors. • Pseudo Random Subdomain (PRSD) DDoS attacks have resumed and are now targeting popular domains. • The majority of command and control infrastructure is hosted in the U.S. • Botnet command and control activity jumped in August, driven by Necurs, the most widespread botnet family. • The hard-to-remove Ghost Push Android malware dominates the mobile malware landscape. • The number of infected IoT devices surged, driven by a 131 percent increase in the Mirai botnet in less than two weeks from when its source code was released. • The Mirai botnet is continuously executing DNS attacks, perhaps presaging another big attack. We hope you find this report to be insightful."