Source |
Network World |
Identifiant |
1094145 |
Date de publication |
2019-04-17 08:11:00 (vue: 2019-04-19 10:05:28) |
Titre |
Cisco Talos details exceptionally dangerous DNS hijacking attack |
Texte |
Security experts at Cisco Talos have released a report detailing what it calls the “first known case of a domain name registry organization that was compromised for cyber espionage operations.”Talos calls ongoing cyber threat campaign “Sea Turtle” and said that state-sponsored attackers are abusing DNS to harvest credentials to gain access to sensitive networks and systems in a way that victims are unable to detect, which displays unique knowledge on how to manipulate DNS, Talos stated.
More about DNS:
DNS in the cloud: Why and why not
DNS over HTTPS seeks to make internet use more private
How to protect your infrastructure from DNS cache poisoning
ICANN housecleaning revokes old DNS security key
By obtaining control of victims' DNS, the attackers can change or falsify any data on the Internet, illicitly modify DNS name records to point users to actor-controlled servers; users visiting those sites would never know, Talos reported. |
Envoyé |
Oui |
Condensat |
about abusing access actor any are article attack attackers cache calls campaign can case change cisco click cloud: compromised control controlled credentials cyber dangerous data detailing details detect displays dns dns: domain espionage exceptionally experts falsify from full gain harvest have here hijacking housecleaning how https icann illicitly infrastructure internet key know knowledge known make manipulate modify more name networks never not obtaining old ongoing operations organization over please point poisoning private protect read records registry released report reported revokes said security seeks sensitive servers; sites sponsored state stated systems talos those threat turtle” unable unique use users victims visiting way what which why would your to “first “sea ”talos |
Tags |
Threat
|
Stories |
|
Notes |
|
Move |
|