• Advertisement
To advertise, place classifieds free ads by category in a forum as a new topic, or in the classified display ads section, or start a classifieds free blog.

DNS Infrastructure Hijacking Campaign

DNS Infrastructure Hijacking Campaign

Postby smix » Fri Jan 11, 2019 10:27 am

DNS Infrastructure Hijacking Campaign
US-CERT

URL: https://www.us-cert.gov/ncas/current-ac ... g-Campaign
Published: Thu, 10 Jan 2019 21:13:54 +0000

Description:

Original release date: January 10, 2019


The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), is aware of a global Domain Name System (DNS) infrastructure hijacking campaign. Using compromised credentials, an attacker can modify the location to which an organization’s domain name resources resolves. This enables the attacker to redirect user traffic to attacker-controlled infrastructure and obtain valid encryption certificates for an organization’s domain names, enabling man-in-the-middle attacks.

NCCIC encourages administrators to review FireEye’s blog on global DNS infrastructure hijacking for more information. Additionally, NCCIC recommends the following best practices to help safeguard networks against this threat:

  • Implement multifactor authentication on domain registrar accounts, or on other systems used to modify DNS records.
  • Verify that DNS infrastructure (second-level domains, sub-domains, and related resource records) points to the correct Internet Protocol addresses or hostnames.
  • Search for encryption certificates related to domains and revoke any fraudulently requested certificates.



This product is provided subject to this Notification and this Privacy & Use policy.


User avatar
smix
 
Posts: 1756556
Images: 1
Joined: Sat Aug 10, 2013 8:05 am
Blog: View Blog (0)

  • Similar Topics
    Replies
    Views
    Last post

Return to Cyber Security


Mobile Device
  • 1
  • FREE CLASSIFIED ADS
    Free Classified Ads
    There are 3 ways to advertise - your choice: you can place free ads in a forum topic, in the classified display ads section, or you may start your own free blog. Please select the appropriate category and forum for the ad content before you post. Do not spam.
    Caveat emptor - let the buyer beware. Deal at your own risk and peril.
  • ANSI IT Security
  • Kaspersky Lab
  • ZoneAlarm
  • Advertisement