PALM BEACH, FL - A critical vulnerability within the Domain Name System (DNS) has been unearthed and exploited by dozens of cybercriminals and hackers originating from Russia to take over thousands of domain names, according to cybersecurity researchers from Infoblox and Eclypsium. An estimated 30,000 legitimate domains have been hijacked by the digital thieves since 2019, experts say, utilizing a technique known as “Sitting Ducks” that exploits weak DNS services. The … [Read more...]
Experts: Hackers Registered Over 500,000 Domains for Massive Cyber-Attack
SANTA CLARA, CA - Hackers have been around since the debut of the Internet, and over the years they’ve learned a number of underhanded tricks to use on unsuspecting victims; one of the most prolific is registering new domains to use to disseminate malware and conduct fishing attacks – while posing as innocent and trustworthy websites – in order to get the unwary to share sensitive information or download malicious software. That being said, according to cybersecurity … [Read more...]
Large-Scale Fraud Campaign Utilizes Over 700 Domains to Sell Fraudulent Tickets
CHANDLER, AR - Authorities have discovered that a group behind a widespread internet scam – dubbed “Ticket Heist” – has been utilizing over 700 domain names, registered over the course of over two years, in order to sell fraudulent tickets and hotel accommodations to the Summer Olympic Games in Paris. The operation, which researchers at threat intelligence company QuoIntelligence say seems to primarily target Russian-speaking individuals, has not only offered … [Read more...]
Thousands of Domain Names Owned by Legitimate Brands Hijacked to Send Spam
TEL AVIV - As part of a sophisticated scheme involving spam proliferation and click monetization, over 8,000 domains and 13,000 sub-domains once owned by major, legitimate brands and institutions have been hijacked to allow millions of spam emails to bypass standard security blocks for nefarious gain. This coordinated malicious activity – dubbed “SubdoMailing” – has been going on since at least September 2022, according to Guardio Labs, the Israeli security … [Read more...]
New Service to Assist with WHOIS Lookups Launched by ICANN for Authorized Users
LOS ANGELES, CA - The Internet Corporation for Assigned Names and Numbers (ICANN) – the nonprofit organization that oversees the domain industry – has launched a new centralized online service to assist researchers, law enforcement, and others to request personal data from all public domain registration records. This new service comes after ICANN had instructed all registrars in May 2018 to redact personal data – such as a customer’s name, address, phone number … [Read more...]