Home > slashdot > Malware on Hijacked Subdomains, a New Trend?

Malware on Hijacked Subdomains, a New Trend?

May 22nd, 2010 05:20 admin Leave a comment Go to comments

The Unmask Parasites blog discusses a technique attackers are using more and more often recently: modifying a compromised site’s DNS settings to redirect various subdomains to different IPs that serve up malware, often leaving site administrators none-the-wiser. Quoting:
“It is clear that hackers have figured out that subdomains of legitimate websites are an almost infinite source of free domain names for their attack sites. With access to DNS settings, they can create arbitrary sub-domains that point to their own servers. Such subdomains can hardly be noticed by domain owners who rarely check their DNS records after the initial domain configuration. And they cost nothing to hackers. I wonder if using hijacked subdomains of legitimate websites is a new trend in malware distribution or just a temporarily solution that won’t be widely adopted by cybercriminals in the long run (like dynamic DNS domains last September).”

Source: Malware on Hijacked Subdomains, a New Trend?

Related Articles:

  1. Open Source Software Hijacked To Push Malware
  2. Stuxnet May Represent New Trend In Malware
  3. 5 Million Domains Serving Malware Via Network Solutions
  4. Hijacked Web Traffic For Sale
  5. Microsoft Settles With No-IP After Malware Takedown
blog comments powered by Disqus