Cybersecurity, DNS and Telecommunications

Sea Turtle Hackers Spy on Dutch ISPs and Telecommunication Companies

Heimadal Security

JANUARY 10, 2024

DNS hijacking and traffic redirection that leads to man-in-the-middle attacks are among their cyber espionage techniques. Their goal is to collect economic and political intelligence […] The post Sea Turtle Hackers Spy on Dutch ISPs and Telecommunication Companies appeared first on Heimdal Security Blog.

Telecommunications

Telecommunications DNS Media Internet

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs

JUNE 11, 2022

Iran-linked Lyceum APT group uses a new.NET-based DNS backdoor to target organizations in the energy and telecommunication sectors. The Iran-linked Lyceum APT group, aka Hexane or Spilrin, used a new.NET-based DNS backdoor in a campaign aimed at companies in the energy and telecommunication sectors, ZScaler researchers warn.

DNS

DNS Telecommunications Malware Phishing

Why You Need a Secondary DNS

Security Boulevard

SEPTEMBER 15, 2022

Last month, a large Canadian telecommunications provider suffered a catastrophic outage for more than 18 hours. The post Why You Need a Secondary DNS appeared first on Security Boulevard. Many Canadians found themselves disconnected when cellular networks and the internet failed to respond—at home or at work.

DNS

DNS Telecommunications Internet Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

DHS issues emergency Directive to prevent DNS hijacking attacks

Security Affairs

JANUARY 23, 2019

DHS has issued a notice of a CISA emergency directive urging federal agencies of improving the security of government-managed domains (i.e.gov) to prevent DNS hijacking attacks. The notice was issued by the DHS and links the emergency directive Emergency Directive 19-01 titled “Mitigate DNS Infrastructure Tampering.”.

DNS

DNS Government Telecommunications Advertising

What is Telecom LightBasin Cyber Attack

CyberSecurity Insiders

OCTOBER 22, 2021

Interestingly, the findings state that the threat actors, probably funded by a government, were hiding in the external DNS servers of telcos and conducting espionage through General Packet Radio Services (GPRS) networks. The post What is Telecom LightBasin Cyber Attack appeared first on Cybersecurity Insiders.

Cyber Attacks

Cyber Attacks Telecommunications DNS Government

Massive Surge in DDoS Attacks Reported in First Quarter of 2023

CyberSecurity Insiders

APRIL 12, 2023

StormWall , a premier cybersecurity firm specializing in the defense of websites, networks, and online services from Distributed Denial of Service (DDoS) attacks, has published an in-depth report on the DDoS landscape during the first quarter of 2023. targeting the DNS, and the remaining 3.7% aimed at other objectives.

DDOS

DDOS Telecommunications Data breaches Firmware

Why is.US Being Used to Phish So Many of Us?

Krebs on Security

SEPTEMBER 1, 2023

is overseen by the National Telecommunications and Information Administration (NTIA), an executive branch agency of the U.S. ” “We stand against DNS abuse in any form and maintain multiple systems and protocols to protect all the TLDs we operate,” the statement continued. US phishing domains.US Department of Commerce.

Phishing

Phishing Telecommunications Government DNS

What is a Managed Security Service Provider? MSSPs Explained

eSecurity Planet

AUGUST 22, 2023

Cybersecurity can be difficult to implement, and to make matters worse, the security professionals needed to do it right are in short supply. Organizations typically decide to outsource cybersecurity for a number of reasons: IT talent shortages make it difficult to hire and retain experienced cybersecurity professionals.

Telecommunications

Telecommunications Firewall Penetration Testing Cybersecurity

What are Common Types of Social Engineering Attacks?

eSecurity Planet

JULY 29, 2021

As social engineering tactics become more advanced, it’s important to know how to identify them in the context of cybersecurity. Social engineering in cybersecurity attacks. Vishing attacks are also similar to phishing and smishing, but these attacks target VoIP and telecommunications services rather than text-based mediums.

Social Engineering

Social Engineering Engineering Phishing DNS

Quad9 to move offices to Switzerland, invites other privacy-focused firms to follow

SC Magazine

FEBRUARY 17, 2021

.” Quad9 is a non-profit offering a free recursive DNS service that does not log user data. and Google Public DNS. The company received a finding of law from the Swiss government that it will not be treated as a telecommunications provider, exempting it from laws that would mandate data collection. are wary of U.S.

DNS

DNS Telecommunications Surveillance Data collection

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Security Affairs

JULY 6, 2021

According to the DNS data analysis, this name was used to register at least two domains, which were created using the email from the phishing kit. Lyrebird operation is yet another example of strong coordinated cooperation between international law enforcement agencies, regional police and cybersecurity players.

Cybercrime

Cybercrime Phishing Banking Telecommunications

OilRig APT group: the evolution of attack techniques over time

Security Affairs

AUGUST 7, 2019

The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. T1094) mainly developed using DNS resolutions (which is actually one of the main characteristic of the attacker group).

Computers and Electronics

Computers and Electronics Penetration Testing DNS Phishing

How to Stop DDoS Attacks: Prevention & Response

eSecurity Planet

SEPTEMBER 3, 2022

For example, the 2016 DDoS attack on the Dyn managed domain name service (DNS) caused the DNS service to fail to respond to legitimate DNS inquiries and effectively shut down major sites such as PayPal, Spotify, Twitter, Yelp, and many others. Also read: How to Secure DNS. Types of DDoS Attacks. In 2020 the U.S.

DDOS

DDOS DNS Firewall Internet

Guarding Against Solorigate TTPs

eSecurity Planet

FEBRUARY 3, 2021

This update touches on the newly detected malware , attack vectors to guard against, and why the targeting of security vendors is a critical development in cybersecurity. Read Also: The IoT Cybersecurity Act of 2020: Implications for Devices. Cybersecurity vendor targets and vigilantes. Brief timeline of findings.

Software

Software Malware Authentication Penetration Testing

APT34: Glimpse project

Security Affairs

MAY 2, 2019

Indeed we might observe a File-based command and control (a quite unusual solution) structure, a VBS launcher, a PowerShell Payload and a covert channel over DNS engine. The group conducts operations primarily in the Middle East, targeting financial, government, energy, chemical, telecommunications and other industries.

DNS

DNS Computers and Electronics Penetration Testing Government

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

Group-IB , a Singapore-based cybersecurity company that specializes in preventing cyberattacks, has analyzed key recent changes to the global cyberthreat landscape. This means that a peaceful existence is no longer possible while being out of touch with cybersecurity. In 2019, cybersecurity became a heavily debated topic in politics.

Banking

Banking Telecommunications Marketing Internet

Iran-linked APT34: Analyzing the webmask project

Security Affairs

APRIL 23, 2019

Security expert Marco Ramilli published the findings of a quick analysis of the webmask project standing behind the DNS attacks implemented by APT34 (aka OilRig and HelixKitten ). The group conducts operations primarily in the Middle East, targeting financial, government, energy, chemical, telecommunications and other industries.

DNS

DNS Computers and Electronics Penetration Testing Government

SolarWinds SUNBURST Backdoor DGA and Infected Domain Analysis

CyberSecurity Insiders

MARCH 5, 2021

According to CRN news , SolarWinds stated that its customers included 425 of the US Fortune 500, the top ten US telecommunications companies, the top five US accounting firms, all branches of the US Military, the Pentagon, the State Department, as well as hundreds of universities and colleges worldwide. Infected Domains Analysis.

DNS

DNS Education Malware Telecommunications

Best Network Monitoring Tools for 2022

eSecurity Planet

JANUARY 26, 2022

Network monitoring is where business performance meets cybersecurity , making it a critical component of any organization’s development, security, and operations ( DevSecOps ) pipeline. Also read: Top Cybersecurity Startups to Watch in 2022. Catchpoint Features. VIAVI Solutions.

Marketing

Marketing DDOS Threat Detection DNS

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. We also talk about the pitfalls of using artificial intelligence in cyber security and about the best way to tackle the US's chronic cybersecurity talent shortage. David Brumley: My name is David Brumley.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. We also talk about the pitfalls of using artificial intelligence in cyber security and about the best way to tackle the US's chronic cybersecurity talent shortage. David Brumley: My name is David Brumley.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. We also talk about the pitfalls of using artificial intelligence in cyber security and about the best way to tackle the US's chronic cybersecurity talent shortage. David Brumley: My name is David Brumley.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

Iranian Threat Actors: Preliminary Analysis

Security Affairs

JANUARY 15, 2020

Nowadays Iran’s Cybersecurity capabilities are under the microscope, experts warn about a possible infiltration of the Iranian government. Nowadays Iran’s Cybersecurity capabilities are under microscope, many news sites, gov. Nowadays Iran’s Cybersecurity capabilities are under microscope, many news sites, gov.

Computers and Electronics

Computers and Electronics Penetration Testing Malware Government

APT trends report Q1 2021

SecureList

APRIL 27, 2021

On January 27, the French national cybersecurity agency (ANSSI) published a report describing an attack campaign that targeted publicly exposed and obsolete Centreon systems between 2017 and 2020, in order to deploy Fobushell (aka P.A.S.) webshells and Exaramel implants.

Malware

Malware Spyware Government Social Engineering

Cyber Security Informer

Sea Turtle Hackers Spy on Dutch ISPs and Telecommunication Companies

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Webinars

Trending Sources

Why You Need a Secondary DNS

Webinars

DHS issues emergency Directive to prevent DNS hijacking attacks

What is Telecom LightBasin Cyber Attack

Massive Surge in DDoS Attacks Reported in First Quarter of 2023

Why is.US Being Used to Phish So Many of Us?

What is a Managed Security Service Provider? MSSPs Explained

What are Common Types of Social Engineering Attacks?

Quad9 to move offices to Switzerland, invites other privacy-focused firms to follow

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

OilRig APT group: the evolution of attack techniques over time

How to Stop DDoS Attacks: Prevention & Response

Guarding Against Solorigate TTPs

APT34: Glimpse project

Group-IB presents its annual report on global threats to stability in cyberspace

Iran-linked APT34: Analyzing the webmask project

SolarWinds SUNBURST Backdoor DGA and Infected Domain Analysis

Best Network Monitoring Tools for 2022

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

Iranian Threat Actors: Preliminary Analysis

APT trends report Q1 2021

Stay Connected