Does Your Domain Have a Registry Lock? - If you’re running a business online, few things can be as disruptive or destructive to your brand ... more: https://krebsonsecurity.com/2020/01/does-your-domain-have-a-registry-lock/ #publicdomainregistry #raymonddijkxhoorn #latestwarnings #thecomingstorm #petercholnoky #registrarlock #openprovider #registrylock #webfraud2.0 #dnspionage #e-hawk.net #whatsapp #arnovis #dnssec #e-hawk #csc #pdr

RT @r00tbsd@twitter.com

Our (with @SecurityBeard@twitter.com) latest work on #DNSpionage is online: https://blog.talosintelligence.com/2019/04/dnspionage-brings-out-karkoff.html we analyzed a bizarre version of #DNSpionage and we identified a new malware named #Karkoff. We put a bonus: a small link between this campaigns and the alleged #Oilrig leak from last week...

🐦🔗: https://twitter.com/r00tbsd/status/1120737060556611586

DNSpionage: Massive Angriffe auf Mail- und VPN-User

Für Angriffe auf Firmen und Regierungsstellen im Nahen Osten haben Unbekannte die DNS-Infrastruktur einer deutschen Firma missbraucht. Der Ablauf der Attacke.

#DNSpionage #Angriffe #Mail #VPN #DNS #Infrastruktur #Internet #Hack

https://www.heise.de/ct/artikel/DNSpionage-Massive-Angriffe-auf-Mail-und-VPN-User-4333644.html

#DNSPIONAGE
Détails techniques sur les récentes attaques contre les noms de domaine
https://www.bortzmeyer.org/dnspionage.html

C'est vraiment bien, les certificats au grand jour, on voit même les certificats des méchants pirates https://crt.sh/?id=831555581 #DNSpionage https://www.bortzmeyer.org/6962.html

[#CyberSec] L'ICANN signale une vague d'attaques informatiques inédite en cours contre l'infrastructure DNS dans le monde entier https://www.huffingtonpost.fr/2019/02/22/une-vague-dattaques-informatiques-inedite-en-cours-dans-le-monde-entier_a_23676257/ (HuffPost)
https://techcrunch.com/2019/02/23/icann-ongoing-attacks-dns (Techcrunch)
#DNS #DNSpionage

Rigolo, je découvre que l'Irak a un truc de sécurité nationale qui s'appelle NSA https://nsa.gov.iq/

(Je vois ça parce qu'il y a un IOC de #DNSpionage qui les désigne : ils ont été piratés le 2 octobre 2018.)

#DNS

RT @AZobec@twitter.com

With @GlaCiuS_@twitter.com we wrote an article about what we observed during an incident response few months ago performing by CERT-OPMD (@openminded_c@twitter.com ) . The malware used was #DNSPIONAGE.
https://blog-cert.opmd.fr/dnspionage-focus-on-internal-actions/
We hope it may help you to hunt some identical threats.

🐦🔗: https://twitter.com/AZobec/status/1083308170238251008

RT @r00tbsd@twitter.com

Interesting, @FireEye@twitter.com published some details on the infrastructure used by the attacker for the DNS redirection mentioned in our #DNSpionage post: https://www.fireeye.com/blog/threat-research/2019/01/global-dns-hijacking-campaign-dns-record-manipulation-at-scale.html (our post for the context: https://blog.talosintelligence.com/2018/11/dnspionage-campaign-targets-middle-east.html)

🐦🔗: https://twitter.com/r00tbsd/status/1083263707621122048