"Sitting Ducks DNS Attacks Let Hackers Hijack Over 35,000 Domains"

Over 35,000 registered domains have been hijacked in "Sitting Ducks" attacks. These attacks enable a domain to be claimed without access to the owner's account at the Domain Name System (DNS) provider or registrar. Cybercriminals exploit configuration flaws at the registrar level and DNS providers' inadequate ownership verification. Infoblox and Eclypsium found that there are over a million exploitable target domains on any given day. Multiple Russian cybercriminal groups have used this attack vector and the hijacked domains in spam campaigns, malware delivery, and more. This article continues to discuss observations regarding Sitting Ducks attacks.

BleepingComputer reports "Sitting Ducks DNS Attacks Let Hackers Hijack Over 35,000 Domains"

Submitted by grigby1

Submitted by Gregory Rigby on