Cybersecurity Highlights

This section registers the most relevant incidents or public events related to the cybersecurity and information and communication technologies (ICT), in a way that a chronological history of them is available, together with their main links, references and information sources.

Post related to: DNS

At least 1.2 million customers affected by GoDaddy data breach

GoDaddy, a company that provides Internet domain registration and web hosting services, has revealed it has detected unauthorised access to its Managed WordPress hosting environment, resulting in a...

References:

sec.gov

hipertextual.com

techcrunch.com

unaaldia.hispasec.com

Tags:

Facebook server outage

Facebook, WhatsApp, Instagram and Messenger services were disrupted by a global outage, affecting users in Europe, America and Asia in particular.As Facebook explains in its official statement,...

References:

engineering.fb.com

twitter.com

engineering.fb.com

bleepingcomputer.com

zdnet.com

krebsonsecurity.com

xataka.com

elpais.com

elconfidencial.com

Tags:

Interrupción del servicio DNS de Akamai a nivel global

Akamai Technologies, one of the main provider of content delivery network (CDN) and cloud services, reported a problem with Zone Apex Mapping feature of the Edge DNS service, which resulted in its...

References:

edgedns.status.akamai.com

twitter.com

bleepingcomputer.com

elcomercio.es

lavanguardia.com

Tags:

Other critical infrastructures

Vishing scam targets GoDaddy employees

A security incident at GoDaddy, an Internet domain and hosting registrar, has compromised some cryptocurrency services such as Liquid and NiceHash.The cyberattack, using vishing techniques against...

References:

twitter.com

blog.liquid.com

nicehash.com

krebsonsecurity.com

gizmodo.com

bankinfosecurity.com

Tags:

DNS hijacking campaign

From the National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), is aware of a global Domain Name System (DNS)...

References:

us-cert.gov

threatpost.com

blog-cert.opmd.fr

fireeye.com

Tags:

Cybercrime

Cyberespionage

DNS

Malware uses Google Drive services as its C&C server

A new variant of the RogueBin Trojan uses Google Drive as its Command & Control (C&C) server. The Trojan infects the victim's computers when the user opens a Microsoft Excel file containing...

References:

thehackernews.com

2-spyware.com

welivesecurity.com

globalnotary.es

Tags:

Compromised public DNS server allows to steal 152.000 dollars

On last April 24, cybercriminals compromised a couple of DNS servers with destination to MyEtherWallet.com, an Ether cryptocurrency wallet web-based site. They redirected all the web traffic to a...

References:

bleepingcomputer.com

cyberscoop.com

hipertextual.com

Tags:

Cybercrime

DNS

Hijacked DNS servers of St. Louis Federal Reserve

The St. Louis Federal Reserve, one of the twelve banks composing the U.S. Federal Reserve, has communicated that, during late April 2015, attackers succeeded in manipulating the routing...

References:

krebsonsecurity.com

computerweekly.com

Tags:

DNS

Incident

Information leakage of WHOIS entries for Google Apps domains

Talos (Cisco) researchers have detected that, since mid 2013, private information from WHOIS entries managed by Google Apps, through eNom, has been publicly accessible. This flaw has affected 282...

References:

blogs.cisco.com

arstechnica.com

theregister.co.uk

Tags:

DNS

Google

Information leakage

Secuestro de direccionamiento en los servidores DNS de Google

La compañía BGPMon, encargada de monitorizar la seguridad de enrutamiento mundial de tráfico, detectó un cambio del sistema autónomo (AS) que anunciaba la ruta 8.8.8.8/32, correspondiente a los...

References:

softpedia.com

arstechnica

Tags:

DNS

Google

Incident

Corporate access

Cybersecurity Highlights

At least 1.2 million customers affected by GoDaddy data breach

Facebook server outage

Interrupción del servicio DNS de Akamai a nivel global

Vishing scam targets GoDaddy employees

DNS hijacking campaign

Malware uses Google Drive services as its C&C server

Compromised public DNS server allows to steal 152.000 dollars

Hijacked DNS servers of St. Louis Federal Reserve

Information leakage of WHOIS entries for Google Apps domains

Secuestro de direccionamiento en los servidores DNS de Google

Pages