2014, DNS and Surveillance - Cyber Security Informer

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

” The DNS part of that moniker refers to the global “ D omain N ame S ystem ,” which serves as a kind of phone book for the Internet by translating human-friendly Web site names (example.com) into numeric Internet address that are easier for computers to manage. PASSIVE DNS.

DNS

DNS Internet Internet Government

RuNet – Russia successfully concluded tests on its Internet infrastructure

Security Affairs

DECEMBER 24, 2019

The authorities want to ensure that the access to Russian Internet resources will be maintained also under attack, to do this, Russian experts are thinking a sort of DNS managed by Moscow. Currently, among the 12 organizations that oversee DNS base servers worldwide there isn’t an entity in Russia. Pierluigi Paganini.

Internet

Internet Internet DNS Surveillance

Russia is going to disconnect from the internet as part of a planned test

Security Affairs

FEBRUARY 16, 2019

The authorities want to ensure that the access to Russian Internet resources will be maintained also under attack, to do this, Russian experts are thinking a sort of DNS managed by Moscow. Currently, among the 12 organizations that oversee DNS base servers worldwide where isn’t an entity in Russia. ” reported ZDNet.

Internet

Internet Internet DNS Cyber Attacks

Security Affairs newsletter Round 223 – News of the week

Security Affairs

JULY 21, 2019

NCSC report warns of DNS Hijacking Attacks. Israel surveillance firm NSO group can mine data from major social media. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . The best news of the week with Security Affairs.

Small Business

Small Business Media Spyware DNS

Reading the Yoroi Cyber Security Annual Report 2018

Security Affairs

MAY 13, 2019

Section 3 describes the “ blocked attacks ” through Yoroi DNS protection during the year, while Section 4 describe Dark-Net activities observed by our researchers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Advertising DNS Surveillance

Security Affairs newsletter Round 209 – News of the week

Security Affairs

APRIL 14, 2019

DNS hijacking campaigns target Gmail, Netflix, and PayPal users. Experts spotted the iOS version of the Exodus surveillance app. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Kindle Edition. Paper Copy.

Data breaches

Data breaches Advertising DNS Surveillance

Controversial law entered into effect in Russia this week

Security Affairs

NOVEMBER 3, 2019

Of course, the concentration of the traffic through nodes controlled by Moscow and the deployment of technical hardware provided by the government could open the door to a massive surveillance. Currently, among the 12 organizations that oversee DNS base servers worldwide there isn’t an entity in Russia. Pierluigi Paganini.

Internet

Internet Internet DNS Government

Security Affairs newsletter Round 221 – News of the week

Security Affairs

JULY 7, 2019

China installs a surveillance app on tourists phones while crossing in the Xinjiang. Godlua backdoor, the first malware that abuses the DNS over HTTPS (DoH). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Scams

Scams Spyware Advertising DNS

Security Affairs newsletter Round 175 – News of the week

Security Affairs

AUGUST 12, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. Security Affairs – Newsletter ).

Advertising

Advertising DNS Firmware Surveillance

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

The past months have shown that the most dangerous hacks involved DNS hijacking, which helped attackers manipulate DNS records for MITM attacks. If they manage to compromise a telecommunications company, they can then also compromise its customers for surveillance or sabotage purposes. Pierluigi Paganini.

Banking

Banking Telecommunications Marketing Internet

Uncovering RedStinger - Undetected APT cyber operations in Eastern Europe since 2020

Malwarebytes

MAY 9, 2023

It contained a Russian name (redacted for privacy) followed by the DNR letters (probably Donetskaya Narodnaya Respublika, referring to one of the cities declared independent in 2014, and a known target to the group). Attackers made a great and long surveillance of this victim, which extended until Jan 2023. лидерывозрождения[.]рф)

Surveillance

Surveillance Accountability DNS Encryption

APT trends report Q1 2021

SecureList

APRIL 27, 2021

It was first publicly documented in 2014, in the aftermath of the Gamma Group hacking incident. Although Lyceum still prefers taking advantage of DNS tunneling, it appears to have replaced the previously documented.NET payload with a new C++ backdoor and a PowerShell script that serve the same purpose.

Malware

Malware Spyware Government Social Engineering

IT threat evolution Q3 2021

SecureList

NOVEMBER 26, 2021

In June, more than six months after DarkHalo had gone dark, we observed the DNS hijacking of multiple government zones of a CIS member state that allowed the attacker to redirect traffic from government mail servers to computers under their control – probably achieved by obtaining credentials to the control panel of the victims’ registrar.

Malware

Malware Banking Energy and Utilities Accountability

NSO mobile Pegasus Spyware used in operations in 45 countries

Security Affairs

SEPTEMBER 18, 2018

Pegasus is a surveillance malware developed by the Israeli surveillance NSO Group that could infect both iPhones and Android devices, it is sold exclusively to the governments and law enforcement agencies. Our technique identified a total of 45 countries where Pegasus operators may be conducting surveillance operations.

Spyware

Spyware Mobile Surveillance DNS

Security Affairs newsletter Round 273

Security Affairs

JULY 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

DNS

DNS Advertising Surveillance Malware

APT trends report Q3 2021

SecureList

OCTOBER 26, 2021

In June, more than six months after DarkHalo had gone dark, we observed the DNS hijacking of multiple government zones of a CIS member state that allowed the attacker to redirect traffic from government mail servers to computers under their control – probably achieved by obtaining credentials to the control panel of the victims’ registrar.

Malware

Malware Government Surveillance Spyware

Cyber Security Informer

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

RuNet – Russia successfully concluded tests on its Internet infrastructure

Trending Sources

Russia is going to disconnect from the internet as part of a planned test

Security Affairs newsletter Round 223 – News of the week

Reading the Yoroi Cyber Security Annual Report 2018

Security Affairs newsletter Round 209 – News of the week

Controversial law entered into effect in Russia this week

Security Affairs newsletter Round 221 – News of the week

Security Affairs newsletter Round 175 – News of the week

Group-IB presents its annual report on global threats to stability in cyberspace

Uncovering RedStinger - Undetected APT cyber operations in Eastern Europe since 2020

APT trends report Q1 2021

IT threat evolution Q3 2021

NSO mobile Pegasus Spyware used in operations in 45 countries

Security Affairs newsletter Round 273

APT trends report Q3 2021

Stay Connected