Tag Archives: DNS

Incident at Fastnet’s VMware platform downs email, DNS • The Register

August 19, 2024 Web Shared Hosting News 0

Brighton-based ISP and hosting provider Fastnet has emerged from a trying week which involved battling VMware/Broadcom tech issues that have downed a number of its customers’ websites.

The outage began on August 13, at which point Fastnet said its technical team was engaged “at the highest level with the vendor” and was working as quickly as possible to restore services.

Fastnet repurposed its homepage into a rolling live blog of progress updates, posting a new one roughly every two hours during workdays. The company didn’t, however, reveal much in the way of technical details about the outage, only attributing the woes to its VMware hosting platform.

“Fastnet are currently experiencing a major, wide-scale…


Source link

GoRed Using DNS And ICMP Tunneling For C2 Server Communication

June 21, 2024 Dedicated Hosting News 0

GoRed Using DNS And ICMP Tunneling For C2 Server Communication

Hackers often abuse DNS and ICMP tunneling to transmit data and bypass network security measures covertly.

All these protocols, which are often enabled by poorly protected firewalls, can be manipulated to create hidden communication routes for transferring sensitive data out or creating entry points for unauthorized users.

This evasion technique enables threat actors to maintain persistence and avoid detection within compromised networks.

Positive Technologies researchers recently discovered that ExCobalt’s new tool, GoRed, uses DNS and ICMP tunneling for C2 server communication.

GoRed Using DNS & ICMP Tunneling

ExCobalt, a group of cyber criminals likely to be an extension of Cobalt, notoriously known for attacks on financial institutions,…


Source link

VexTrio: Most Malicious DNS Threat Actor Identified

March 1, 2024 Dedicated Hosting News 0

B2B Cyber ​​Security ShortNews

A DNS management and security provider has exposed and blocked VexTrio, a complex criminal affiliate program. This increases cybersecurity.

Infoblox has made another important discovery in the fight against cybercrime: In a comprehensive blog post today, the company presents its findings about VexTrio, operator of a massive criminal affiliate network. VexTrio has played a central role in processing traffic for years. Although VexTrio is difficult to identify and track, blocking it directly disrupts a variety of cybercriminal activities. Through its discovery, Infoblox has helped make all of cyberspace safer.

Infoblox aims to raise awareness of the threat posed by traffic distribution systems (TDS) by targeting these structures – and advocates for increased industry-wide…


Source link

VexTrio: Most Malicious DNS Threat Actor Identified

March 1, 2024 Web Shared Hosting News 0

B2B Cyber ​​Security ShortNews

A DNS management and security provider has exposed and blocked VexTrio, a complex criminal affiliate program. This increases cybersecurity.

Infoblox has made another important discovery in the fight against cybercrime: In a comprehensive blog post today, the company presents its findings about VexTrio, operator of a massive criminal affiliate network. VexTrio has played a central role in processing traffic for years. Although VexTrio is difficult to identify and track, blocking it directly disrupts a variety of cybercriminal activities. Through its discovery, Infoblox has helped make all of cyberspace safer.

Infoblox aims to raise awareness of the threat posed by traffic distribution systems (TDS) by targeting these structures – and advocates for increased industry-wide…


Source link

Savvy Seahorse Hackers Leverage DNS CNAME Records

February 29, 2024 Dedicated Hosting News 0

Savvy Seahorse Hackers Leverage DNS

Cybersecurity researchers unveiled a sophisticated scam operation, “Savvy Seahorse,” exploiting victims through advanced DNS manipulation techniques.

This operation, active since at least August 2021, has flown under the radar by leveraging DNS canonical name (CNAME) records to create a dynamic and elusive traffic distribution system (TDS) for financial scam campaigns.

A Novel Approach to Cybercrime

Savvy Seahorse’s campaigns are not your typical phishing attempts. They incorporate fake ChatGPT and WhatsApp bots that provide automated responses, luring victims into providing personal information under the guise of high-return investment opportunities.

These campaigns target a wide range of language speakers, including Russian, Polish,…


Source link