Researchers at the Cisco Talos security intelligence research group said Greece's top-level domain registrar, the Institute of Computer Science of the Foundation for Research and Technology (ICS-Forth), has suffered a hacker breach, and identified the state-sponsored "Sea Turtle" hacker group as the perpetrator.
Sea Turtle penetrates or accesses breached accounts at domain registrars and managed Domain Name System (DNS) suppliers, then alters a target company's DNS settings for internal servers. This reroutes traffic intended for legitimate corporate apps or webmail services to clone servers, in order to launch man-in-the-middle attacks and harvest user login credentials.
The Talos researchers said Sea Turtle's strategy for the ICS-Forth breach is similar to past attacks, but the domain names for which the group modified DNS settings are not yet known.
View Full Article
Abstracts Copyright © 2019 SmithBucklin, Washington, DC, USA
No entries found