Iran-Linked DNS Hijacking Attacks Target Organizations Worldwide
FireEye has discovered a global DNS hijacking campaign targeting governments and businesses, including companies vital to telecommunications and Internet infrastructure. The cybersecurity firm says it has found evidence indicating that the attacks may be carried out by hackers working for the Iranian government.
The attackers attempt to gain access to targeted networks by manipulating DNS records in various ways. The DNS hijacking methods can allow the threat actors to obtain usernames, passwords and domain credentials on compromised networks.