Accountability, DNS, Technology and Telecommunications

Accountability

DNS

Technology

Telecommunications

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

” The DNS part of that moniker refers to the global “ D omain N ame S ystem ,” which serves as a kind of phone book for the Internet by translating human-friendly Web site names (example.com) into numeric Internet address that are easier for computers to manage. PASSIVE DNS.

DNS

DNS Internet Internet Government

Lyceum group reborn

SecureList

OCTOBER 18, 2021

As in the older DanBot instances, both variants supported similar custom C&C protocols tunneled over DNS or HTTP. In 2021, we have been able to identify a new cluster of the group’s activity, focused on two entities in Tunisia. We assume that it was used as a means to proxy traffic between two internal network clusters.

DNS

DNS Telecommunications Malware Accountability

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

Lyceum APT made the headlines with attacks in Middle East

Security Affairs

AUGUST 27, 2019

reported that Hexane is targeting organizations in the oil and gas industry and telecommunication providers. Lyceum was observed using password spraying and brute-force attacks to compromise email accounts of targeted individuals. The malware uses DNS and HTTP-based communication mechanisms. Security experts at Dragos Inc.

DNS

DNS Penetration Testing Passwords Social Engineering

What is a Managed Security Service Provider? MSSPs Explained

eSecurity Planet

AUGUST 22, 2023

History of MSSPs As internet service providers (ISPs) and telecommunications companies (telecoms) began offering commercial access to the internet in the late 1990s, they began to also offer firewall appliances and associated managed services. assets (endpoints, servers, IoT, routers, etc.),

Telecommunications

Telecommunications Firewall Penetration Testing Cybersecurity

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Security Affairs

JULY 6, 2021

According to the DNS data analysis, this name was used to register at least two domains, which were created using the email from the phishing kit. A total of five email addresses associated with the accused were identified, along with six nicknames, and his accounts on Skype, Facebook, Instagram, and Youtube.

Cybercrime

Cybercrime Phishing Banking Telecommunications

OilRig APT group: the evolution of attack techniques over time

Security Affairs

AUGUST 7, 2019

The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. Indeed during the group_a, the main observed delivery techniques where about Phishing (rif.T1193) and Valid Accounts (rif.T1078).

Computers and Electronics

Computers and Electronics Penetration Testing DNS Phishing

Guarding Against Solorigate TTPs

eSecurity Planet

FEBRUARY 3, 2021

The attacker can then define an admin account, setting the home directory to the root of C: drive. With user account credentials, attackers had a suite of email, documents, and data at their fingertips. Create a system of accountability by segregating roles for authorizing, approving, and monitoring code signatures.

Software

Software Malware Authentication Penetration Testing

Iran-linked APT34: Analyzing the webmask project

Security Affairs

APRIL 23, 2019

Security expert Marco Ramilli published the findings of a quick analysis of the webmask project standing behind the DNS attacks implemented by APT34 (aka OilRig and HelixKitten ). The group conducts operations primarily in the Middle East, targeting financial, government, energy, chemical, telecommunications and other industries.

DNS

DNS Computers and Electronics Penetration Testing Government

SolarWinds SUNBURST Backdoor DGA and Infected Domain Analysis

CyberSecurity Insiders

MARCH 5, 2021

We found the affected domains span across different types of organizations (including information technology, public administration, education, and finance and insurance etc.) Data ingestion through DNS logs are also helpful, but it might not capture the signals if the attacker utilizes public DNS such as Google DNS (8.8.8.8)

DNS

DNS Education Malware Telecommunications

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

The past months have shown that the most dangerous hacks involved DNS hijacking, which helped attackers manipulate DNS records for MITM attacks. The most common objective of such attacks is cyberespionage and disruption of major telecommunications companies’ work. The telecommunications sector: Are providers ready for 5G?

Banking

Banking Telecommunications Marketing Internet

Best Network Monitoring Tools for 2022

eSecurity Planet

JANUARY 26, 2022

Assembled by Broadcom subsidiary CA Technologies, DX NetOps offers network visibility and actionable intelligence for monitoring digital user experiences. Spun off from the telecommunications vendor JDS Uniphase in 2015, Viavi Solutions is a newer name, but it has four-plus decades of IT services experience. Catchpoint Features.

Marketing

Marketing DDOS Threat Detection DNS

Cyber Security Informer

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Lyceum group reborn

Trending Sources

Lyceum APT made the headlines with attacks in Middle East

What is a Managed Security Service Provider? MSSPs Explained

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

OilRig APT group: the evolution of attack techniques over time

Guarding Against Solorigate TTPs

Iran-linked APT34: Analyzing the webmask project

SolarWinds SUNBURST Backdoor DGA and Infected Domain Analysis

Group-IB presents its annual report on global threats to stability in cyberspace

Best Network Monitoring Tools for 2022

Stay Connected