Security News > 2017 > March > DNSMessenger backdoor/RAT uses DNS queries to communicate with C&C server (Help Net Security)
2017-03-06 21:48
How to make sure that your malware will be able to communicate with its C&C servers even if the infected machine sits behind a company firewall and traffic to and from the corporate network is regularly inspected? Pack the needed information into DNS traffic. For one thing, DNS traffic is very rarely blocked, as it is needed to allow users to access network resources by name (instead by IP addresses). Secondly, DNS traffic monitoring and … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/8ZcMw8BvqXY/
Related news
- Critical Zimbra RCE flaw exploited to backdoor servers using emails (source)
- China’s infosec leads accuse Intel of NSA backdoor, cite chip security flaws (source)
- Security Flaws in Popular ML Toolkits Enable Server Hijacks, Privilege Escalation (source)
- 'Alarming' security bugs lay low in Linux's needrestart server utility for 10 years (source)