In August 2019, cybersecurity researchers revealed that a hacker group known as Sea Turtle targeted 40 telecoms, internet service providers, domain registrars and government organizations in the Middle East and North Africa.
The attackers hijacked the domain names of ministries of foreign affairs, intelligence/military agencies and energy-related groups in those regions. As a result, Sea Turtle was able to intercept all internet data – including email and web traffic – sent to the victims.
Then, in June 2020, the Japanese cryptocurrency exchange Coincheck reported that hackers gained access to its domain registrar provider and hijacked its coincheck.com domain name. They then contacted Coincheck customers and asked them to verify account information, which could be used to access the accounts and steal funds.
The two incidents illustrate the growing threat of Domain Name System (DNS) hijacking.
read more (helpnetsecurity)
The attackers hijacked the domain names of ministries of foreign affairs, intelligence/military agencies and energy-related groups in those regions. As a result, Sea Turtle was able to intercept all internet data – including email and web traffic – sent to the victims.
Then, in June 2020, the Japanese cryptocurrency exchange Coincheck reported that hackers gained access to its domain registrar provider and hijacked its coincheck.com domain name. They then contacted Coincheck customers and asked them to verify account information, which could be used to access the accounts and steal funds.
The two incidents illustrate the growing threat of Domain Name System (DNS) hijacking.
read more (helpnetsecurity)