GoRed Using DNS And ICMP Tunneling For C2 Server Communication

GoRed Using DNS And ICMP Tunneling For C2 Server Communication

hosting June 21, 2024 Dedicated Hosting News Leave a comment 1 Views

GoRed Using DNS And ICMP Tunneling For C2 Server Communication

Hackers often abuse DNS and ICMP tunneling to transmit data and bypass network security measures covertly.

All these protocols, which are often enabled by poorly protected firewalls, can be manipulated to create hidden communication routes for transferring sensitive data out or creating entry points for unauthorized users.

This evasion technique enables threat actors to maintain persistence and avoid detection within compromised networks.

Positive Technologies researchers recently discovered that ExCobalt’s new tool, GoRed, uses DNS and ICMP tunneling for C2 server communication.

GoRed Using DNS & ICMP Tunneling

ExCobalt, a group of cyber criminals likely to be an extension of Cobalt, notoriously known for attacks on financial institutions,…


Source link

Tags

About hosting

Check Also

High Growth Tech Stocks in France to Watch This October 2024

High Growth Tech Stocks in France to Watch This October 2024

As global markets respond positively to China’s new stimulus measures, European indices, including France’s CAC …

Leave a Reply

Your email address will not be published. Required fields are marked *