Malware Increasingly Uses DNS As Command and Control Channel to Avoid Detection

Home

Topics

Access Providers Artificial Intelligence Blockchain Brand Protection Broadband Censorship Cloud Computing Cyberattack Cybercrime Cybersecurity Data Center DDoS Attack DNS DNS Security Domain Management Domain Names Email Enum Gaming ICANN Internet Governance Internet of Things Internet Protocol

IPv4 Markets IPTV IPv6 Transition Law Malware Mobile Internet Multilinguism Net Neutrality Networks New TLDs P2P Policy & Regulation Privacy Regional Registries Registry Services Spam Telecom UDRP VoIP Web White Space Whois Wireless

Display Options:

List by Popularity Chart by Popularity

Home / News

Malware Increasingly Uses DNS As Command and Control Channel to Avoid Detection

By CircleID Reporter
February 29, 2012, 9:07 pm PST Views: 7,697 Add Comment

Number of malware threats that receive instructions from attackers through DNS is expected to increase, and most companies are not currently scanning for such activity on their networks, security experts said at the RSA Conference 2012 on Tuesday. While most malware-generated traffic passing through most channels used for communicating with botnets (such as TCP, IRC, HTTP or Twitter feeds and Facebook walls) can be detected and blocked, it’s not the case for DNS (Domain Name System) and attackers are taking advantage of that, said Ed Skoudis, founder of Counter Hack Challenges and SANS fellow.

By CircleID Reporter

CircleID’s internal staff reporting on news tips and developing stories. Do you have information the professional Internet community should be aware of? Contact us.

Filed Under

Comments

The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

VINTON CERF
Co-designer of the TCP/IP Protocols & the Architecture of the Internet

Related

A Glimpse into the Global Domain Registration Trends Seen in Q1 2024

WhoisXML API
Apr 16, 2024 10:25 AM PDT
Views: 655

Uncovering Suspicious Download Pages Linked to App Installer Abuse

WhoisXML API
Apr 09, 2024 7:56 AM PDT
Views: 2,582

The xz liblzma Vulnerability

Paul Ebersman
Apr 09, 2024 7:00 AM PDT
Views: 3,302

On the DNS Trail of the Rise of macOS Backdoors

WhoisXML API
Apr 02, 2024 8:19 AM PDT
Views: 4,003

The FCC Cyber Trust Label Gambit: Part II

Anthony Rutkowski
Mar 27, 2024 6:56 PM PDT
Views: 5,040

Advancing Digital Trust: Global Innovations in Domain Registrant Verification (Highlights from the ICANN79 Community Forum)

Michael D. Palage
Mar 22, 2024 11:14 AM PDT
Views: 6,525

Checking Out the DNS for More Signs of ResumeLooters

WhoisXML API
Mar 22, 2024 11:00 AM PDT
Views: 4,272

Biden Administration Alerts Governors to Rising Cyber Threats on U.S. Water Systems

CircleID Reporter
Mar 20, 2024 11:35 AM PDT
Views: 4,837

WhoisXML API Publishes a New Study of 7 APT Groups That Have Targeted North America

WhoisXML API
Mar 19, 2024 10:34 AM PDT
Views: 4,951

Searching for Potential Propaganda Vehicle Presence in the DNS

WhoisXML API
Mar 16, 2024 5:42 PM PDT
Views: 5,436

More

Topics

Brand Protection

Sponsored byCSC

New TLDs

Sponsored byRadix

IPv4 Markets

Sponsored byIPv4.Global

DNS

Sponsored byDNIB.com

Domain Names

Sponsored byVerisign

Cybersecurity

Sponsored byVerisign

Threat Intelligence

Sponsored byWhoisXML API

View All Topics

A World-Renowned Source for Internet Developments. Serving Since 2002.

FOLLOW

CIRCLEID: About | Contact Us
SECTIONS: Home | Topics | Featured Blogs | News Briefs | Industry Updates | Community
TERMS OF USE: Codes of Conduct | Privacy Policy | Terms of Use

Copyright © 2002-2024 CircleID. All rights reserved unless where otherwise noted.
Local Time: Friday, April 19, 2024 03:29 AM PDT – Page Load: 0.1763 Sec.