One of the more interesting presentations at the Kaspersky Lab Security Analyst Summit was given by Jaime Blasco of AlienVault that focused on how malware authors are using (or misusing) DNS traffic to launch attacks. Blasco showed how this is done and discussed the tools that can be used to enable the attacks.
Find out more here:
http://threatpost.com/tracking-malware-that-uses-dns-for-exfiltration/111147