Increasing Awareness of DNS Hijacking: A Growing Cyber Threat
Read more about DNS hijacking and how organizations can prevent it. Continue reading Increasing Awareness of DNS Hijacking: A Growing Cyber Threat
Category Archives: DNS Hijacking
DNSChanger and the Global Scope of Cybersecurity
In November 2011, the FBI-led Operation Ghost Click raided malicious servers run by the Rove Digital cyber group. This was only after the group had leveraged the DNSChanger Trojan to infect over four million computers and generate over $14 million in illicit profits. At the time, the operation was billed as the biggest cyber criminal […]
The post DNSChanger and the Global Scope of Cybersecurity appeared first on Security Intelligence.
Continue reading DNSChanger and the Global Scope of Cybersecurity
Did Brazil DSL Modem Attacks Change Device Security?
From 2011 to 2012, millions of Internet users in Brazil fell victim to a massive attack against vulnerable DSL modems. By configuring the modems remotely, attackers could redirect users to malicious domain name system (DNS) servers. Victims trying to visit popular websites (Google, Facebook) were instead directed to imposter sites. These rogue sites then installed […]
The post Did Brazil DSL Modem Attacks Change Device Security? appeared first on Security Intelligence.
Continue reading Did Brazil DSL Modem Attacks Change Device Security?
Did Brazil DSL Modem Attacks Change Device Security?
From 2011 to 2012, millions of Internet users in Brazil fell victim to a massive attack against vulnerable DSL modems. By configuring the modems remotely, attackers could redirect users to malicious domain name system (DNS) servers. Victims trying to visit popular websites (Google, Facebook) were instead directed to imposter sites. These rogue sites then installed […]
The post Did Brazil DSL Modem Attacks Change Device Security? appeared first on Security Intelligence.
Continue reading Did Brazil DSL Modem Attacks Change Device Security?
‘Cyber Storm’ drill for critical infrastructure focuses on corruption of key IT services
In a drill this week that drew some 2,000 participants, the Department of Homeland Security tested the ability of companies in the health care, manufacturing and other key sectors to withstand hypothetical hacking campaigns that compromise the trust users place in key internet services. The seventh iteration of Cyber Storm, as the biannual exercise is called, focused on what could go wrong when some of the pillars of the internet are corrupted. It is the subtle manipulation of these IT services that advanced hacking campaigns often exploit in the real world. The simulation featured compromised certificate authorities, which deem software trustworthy, attacks on the Border Gateway Protocol, the internet’s basic routing mechanism, and the subversion of domain name system (DNS) records, which help send a user to a website that is not malicious. “Many organizations do not have a full understanding of their reliance on third-party services,” said Brian Harrell, assistant […]
The post ‘Cyber Storm’ drill for critical infrastructure focuses on corruption of key IT services appeared first on CyberScoop.
Coincheck cryptocurrency exchange targeted by hackers, customer emails exposed
Japanese cryptocurrency exchange Coincheck has announced that earlier this week hackers managed to access some emails sent to the firm by its customers, after its domain name registrar account was compromised.
Read more in my article on the Hot for Sec… Continue reading Coincheck cryptocurrency exchange targeted by hackers, customer emails exposed
Hackers are messing with routers’ DNS settings as telework surges around the world
Personal Wi-Fi routers have long been a cybersecurity weak point, which is a growing concern as the COVID-19 pandemic forces people to work from home. According to new BitDefender research, criminals have moved quickly to manipulate these routers in a wide swath of countries in Europe, as well as in the United States. Attackers have begun changing Domain Name System (DNS) settings in Linksys routers, pointing users to what they believe is a legitimate website that also includes a pop-up message with information about the pandemic. However, once a user clicks through, a fake coronavirus-related app may be downloaded containing malware that can perform a host of nefarious activities, according to Liviu Arsene, a global cybersecurity researcher at BitDefender. ”It is a big problem, especially now that everybody’s working from home,” Arsene told CyberScoop. “Having your router’s DNS compromised can spell disaster because if attackers can redirect you to any page they want […]
The post Hackers are messing with routers’ DNS settings as telework surges around the world appeared first on CyberScoop.
Continue reading Hackers are messing with routers’ DNS settings as telework surges around the world
DHS tells U.S. organizations to clamp down on cybersecurity in wake of Soleimani killing
The Department of Homeland Security on Monday issued guidance to U.S. companies and government agencies on securing their computer networks following the killing last week of a top Iranian general. The advisory from DHS’s Cybersecurity and Infrastructure Security Agency acknowledges the considerable capabilities at Iran’s disposal should the Islamic Republic choose to retaliate in cyberspace, and urges organizations to consider whether they make an attractive target for Tehran’s hackers. Iran and its proxies have a history of “disruptive and destructive cyber operations against strategic targets, including finance, energy, and telecommunications organizations, and an increased interest in industrial control systems and operational technology,” the advisory says. Iranian operatives could also steal intellectual property or conduct cyber-espionage “to enable a better understanding of our strategic direction and policy-making,” according to CISA. “Review your organization from an outside perspective and ask the tough questions—are you attractive to Iran and its proxies because of your business model, who your […]
The post DHS tells U.S. organizations to clamp down on cybersecurity in wake of Soleimani killing appeared first on CyberScoop.
The Dangers of DNS Hijacking: Ending Cyber Insecurity
DNS hijacking is an innocuous form of cyberattack, but it can be prevented. Here are a few tips As technology evolves, cyberattacks are becoming more sophisticated, making it more difficult for experienced security experts to detect. This leads to dat… Continue reading The Dangers of DNS Hijacking: Ending Cyber Insecurity
Alleged “Psycho” hacker in court over EtherDelta cryptocurrency robbery
An alleged hacker has appeared in a US federal court to answer charges related to the theft of at least $1.4 million in cryptocurrency from the EtherDelta cryptocurrency exchange platform in December 2017.
Read more in my article on the Hot for Securit… Continue reading Alleged “Psycho” hacker in court over EtherDelta cryptocurrency robbery