Security News > 2017 > March > DNSMessenger backdoor/RAT uses DNS queries to communicate with C&C server (Help Net Security)
2017-03-06 21:48
How to make sure that your malware will be able to communicate with its C&C servers even if the infected machine sits behind a company firewall and traffic to and from the corporate network is regularly inspected? Pack the needed information into DNS traffic. For one thing, DNS traffic is very rarely blocked, as it is needed to allow users to access network resources by name (instead by IP addresses). Secondly, DNS traffic monitoring and … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/8ZcMw8BvqXY/
Related news
- GitHub Patches Critical Security Flaw in Enterprise Server Granting Admin Privileges (source)
- macOS Version of HZ RAT Backdoor Targets Chinese Messaging App Users (source)
- Russian security firm Dr.Web disconnects all servers after breach (source)
- Windows Server 2025 previews security updates without restarts (source)