DNSpionage – WindowsTechs.com

Does Your Domain Have a Registry Lock?

Posted on January 24, 2020 by BrianKrebs

If you’re running a business online, few things can be as disruptive or destructive to your brand as someone stealing your company’s domain name and doing whatever they wish with it. Even so, most major Web site owners aren’t taking full advantage of the security tools available to protect their domains from being hijacked. Here’s the story of one recent victim who was doing almost everything possible to avoid such a situation and still had a key domain stolen by scammers. Continue reading Does Your Domain Have a Registry Lock?→

DNSpionage group’s Karkoff malware selectively pick victims

Posted on April 25, 2019 by Ryan De Souza

By Ryan De Souza
Karkoff creates a timeline of the command execution which can be “extremely” useful when responding to this type of threat. The IT security researchers at Cisco’s Talos threat research team have discovered a new malwa… Continue reading DNSpionage group’s Karkoff malware selectively pick victims→

‘Karkoff’ Is the New ‘DNSpionage’ With Selective Targeting Strategy

Posted on April 24, 2019 by Swati Khandelwal

The cybercriminal group behind the infamous DNSpionage malware campaign has been found running a new sophisticated operation that infects selected victims with a new variant of the DNSpionage malware.

First uncovered in November last year, the DNSpion… Continue reading ‘Karkoff’ Is the New ‘DNSpionage’ With Selective Targeting Strategy→

ICANN demands DNSSEC to combat DNS hijacking

Posted on February 26, 2019 by John E Dunn

DNS security is under serious threat from cyberattackers and domain overseer ICANN wants internet companies to do something about it. Continue reading ICANN demands DNSSEC to combat DNS hijacking→

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Posted on February 18, 2019 by BrianKrebs

The U.S. government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed suspected Iranian hackers to siphon huge volumes of email passwords and other sensitive data from multiple governments and private companies. But to date, the specifics of exactly how that attack went down and who was hit have remained shrouded in secrecy.

This post seeks to document the extent of those attacks, and traces the origins of this overwhelmingly successful cyber espionage campaign back to a cascading series of breaches at key Internet infrastructure providers. Continue reading A Deep Dive on the Recent Widespread DNS Hijacking Attacks→