GoRed Using DNS And ICMP Tunneling For C2 Server Communication

GoRed Using DNS And ICMP Tunneling For C2 Server Communication

hosting June 21, 2024 Dedicated Hosting News Leave a comment 1 Views

GoRed Using DNS And ICMP Tunneling For C2 Server Communication

Hackers often abuse DNS and ICMP tunneling to transmit data and bypass network security measures covertly.

All these protocols, which are often enabled by poorly protected firewalls, can be manipulated to create hidden communication routes for transferring sensitive data out or creating entry points for unauthorized users.

This evasion technique enables threat actors to maintain persistence and avoid detection within compromised networks.

Positive Technologies researchers recently discovered that ExCobalt’s new tool, GoRed, uses DNS and ICMP tunneling for C2 server communication.

GoRed Using DNS & ICMP Tunneling

ExCobalt, a group of cyber criminals likely to be an extension of Cobalt, notoriously known for attacks on financial institutions,…


Source link

Tags

About hosting

Check Also

Urban Châtelet: the festival dedicated to the hip-hop movement at the Théâtre du Châtelet

Urban Châtelet: the festival dedicated to the hip-hop movement at the Théâtre du Châtelet

For the first time, the Théâtre du Châtelet is hosting a festival dedicated to the …

Leave a Reply

Your email address will not be published. Required fields are marked *