Cybersecurity Highlights

This section registers the most relevant incidents or public events related to the cybersecurity and information and communication technologies (ICT), in a way that a chronological history of them is available, together with their main links, references and information sources.

Post related to: DNS

Vishing scam targets GoDaddy employees

A security incident at GoDaddy, an Internet domain and hosting registrar, has compromised some cryptocurrency services such as Liquid and NiceHash.The cyberattack, using vishing techniques against...

References:

twitter.com

blog.liquid.com

nicehash.com

krebsonsecurity.com

gizmodo.com

bankinfosecurity.com

Tags:

DNS hijacking campaign

From the National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), is aware of a global Domain Name System (DNS)...

References:

us-cert.gov

threatpost.com

blog-cert.opmd.fr

fireeye.com

Tags:

Cybercrime

Cyberespionage

DNS

Malware uses Google Drive services as its C&C server

A new variant of the RogueBin Trojan uses Google Drive as its Command & Control (C&C) server. The Trojan infects the victim's computers when the user opens a Microsoft Excel file containing...

References:

thehackernews.com

2-spyware.com

welivesecurity.com

globalnotary.es

Tags:

Compromised public DNS server allows to steal 152.000 dollars

On last April 24, cybercriminals compromised a couple of DNS servers with destination to MyEtherWallet.com, an Ether cryptocurrency wallet web-based site. They redirected all the web traffic to a...

References:

bleepingcomputer.com

cyberscoop.com

hipertextual.com

Tags:

Cybercrime

DNS

Hijacked DNS servers of St. Louis Federal Reserve

The St. Louis Federal Reserve, one of the twelve banks composing the U.S. Federal Reserve, has communicated that, during late April 2015, attackers succeeded in manipulating the routing...

References:

krebsonsecurity.com

computerweekly.com

Tags:

DNS

Incident

Information leakage of WHOIS entries for Google Apps domains

Talos (Cisco) researchers have detected that, since mid 2013, private information from WHOIS entries managed by Google Apps, through eNom, has been publicly accessible. This flaw has affected 282...

References:

blogs.cisco.com

arstechnica.com

theregister.co.uk

Tags:

DNS

Google

Information leakage

Secuestro de direccionamiento en los servidores DNS de Google

La compañía BGPMon, encargada de monitorizar la seguridad de enrutamiento mundial de tráfico, detectó un cambio del sistema autónomo (AS) que anunciaba la ruta 8.8.8.8/32, correspondiente a los...

References:

softpedia.com

arstechnica

Tags:

DNS

Google

Incident

Cambios en el control de los servidores raíz de DNS

La NTIA (National Telecommunications and Information Administration), que actúa bajo el Departamento de Comercio de Estados Unidos, anunció formalmente su intención de transferir el control de la...

References:

ntia.doc.gov

arstechnica.com

Tags:

DNS

Internet

DNS poisoning a dominios .com en China

Los usuarios de China se han visto afectados por una redirección de tráfico que afectaba a todos los dominios .com. Durante varias horas, la resolución DNS de dominios .com redirigía a la IP 65.49...

References:

greatfire.org

reuters.com

eweek.com

Tags:

DNS

Incident

Corporate access