• Login
Fintedex — Business, Fincance & Investment News
  • Contact
No Result
View All Result
  • Contact
No Result
View All Result
Fintedex — Business, Fincance & Investment News
No Result
View All Result
Home Technology

There are more malicious domains online than ever before

Timothy Wilson by Timothy Wilson
29.09.2022
in Technology
0
0
SHARES
12
VIEWS
Share on FacebookShare on Twitter

Thousands of new domains are registered everyday so that businesses and individuals can build websites but new research from Palo Alto Networks has revealed that cybercriminals often register malicious domains years before they intend to actually use them.

The cybersecurity firm’s Unit 42 first began its research into dormant malicious domains after it was revealed that the threat actors behind 2019’s SolarWinds hack used them in their attack. To identify strategically aged domains and monitor their activity, Palo Alto Networks launched a cloud-based detector in September of 2021.

According to the findings of the firm’s researchers, 22.3 percent of strategically aged domains pose some form of danger with a small portion being straight-out malicious (3.8%), a majority being suspicious (19%) and some being unsafe for work environments (2%).

The reason cybercriminals and other threat actors let a domain is age is to create a “clean record” so that their domain will be less likely to be blocked. Newly registered domains (NRDs) on the other hand are more likely to be malicious and for this reason, security systems often flag them as suspicious. However, according to Palo Alto Networks, strategically aged domains are three times more likely to be malicious than NRDs.

Detecting malicious domains lying dormant

When a sudden spike in traffic is detected, it’s often the case that a strategically aged domain is actually malicious. This is because normal websites typically see their traffic grow gradually from when they’re created as more people visit a site after learning about it through word of mouth or advertising.

At the same time, domains that aren’t intended for legitimate purposes often have incomplete, cloned or questionable content and usually lack WHOIS registrant details as well. Another sign that a domain was registered and intended to be used at a later time in malicious campaigns is DGA subdomain generation.

For those unfamiliar, DGA or domain generation algorithm is a method used to generate domain names and IP addresses that will serve as command and control (C2) communication points used to evade detection and block lists. Just by examining sites using DGA, Palo Alto Networks’ cloud-based detector was able to identify two suspicious domains each day.

During its investigation, the cybersecurity firm discovered a Pegasus spying campaign that used two C2 domains registered in 2019 that finally became active two years later in July of 2021. Palo Alto Networks’ researchers also found phishing campaigns that used DGA subdomains as well as wildcard DNS abuse.

We’ve also highlighted the best web hosting, best endpoint protection software and best malware removal software

Via Bleeping Computer


Previous Post

The Tell: U.S. small-cap stocks will probably lag the S&P 500 next year, says DataTrek. Here’s why.

Next Post

Living With Climate Change: This $69 little black dress is made out of carbon emissions collected from steel mills

Related Posts

This James Webb telescope image may be hiding more than just the stars
Technology

This James Webb telescope image may be hiding more than just the stars

by Timothy Wilson
29.09.2022
New God of War Ragnarok abilities revealed, including incinerating blades
Technology

New God of War Ragnarok abilities revealed, including incinerating blades

by Timothy Wilson
29.09.2022
DualSense Edge: everything you need to know about the PS5 pro controller
Technology

DualSense Edge: everything you need to know about the PS5 pro controller

by Timothy Wilson
29.09.2022
Bluehost vs GoDaddy: Two top web hosting providers compared
Technology

Bluehost vs GoDaddy: Two top web hosting providers compared

by Timothy Wilson
29.09.2022
Audio-Technica’s new cheap record player with Bluetooth is a modern vinyl dream
Technology

Audio-Technica’s new cheap record player with Bluetooth is a modern vinyl dream

by Timothy Wilson
29.09.2022
Next Post

Living With Climate Change: This $69 little black dress is made out of carbon emissions collected from steel mills

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Browse by Category

  • Business
  • Opinion
  • Stock Market
  • Technology
  • Без рубрики

Fintedex delivers real-time news about the financial industry: feature stories, industry developments, opinions plus the latest on people and trends.

Categories

  • Business
  • Opinion
  • Stock Market
  • Technology
  • Без рубрики

Recent Posts

  • Building a Successful Startup: Lessons Learned from Top Entrepreneurs
  • The Art of Negotiation: How to Close Deals Like a Pro
  • 10 Proven Strategies for Scaling Your Business in Any Industry

© 2021 Fintedex. Submit news release

No Result
View All Result
  • Contact

© 2021 Fintedex. Submit news release

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?