Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Microsoft successfully rescued 50 domain names from the notorious hacker group
Add a resounding victory for Microsoft against the sponsored hacker groups. The East Virginia District Court recently issued a decision agreeing to allow Microsoft to confiscate 50 domain names from the notorious Thallium hacker group.
Thallium is a large hacker organization with strong ties to the Korean government. The group designed many malicious networks, which are used to target identified victims and then compromise online accounts, infect malware on computer systems, compromise network security. and stealing sensitive information from victims. The Thallium targets are primarily government officials, university staff, academics, members of world peace and human rights organizations, and working individuals. in the nuclear field. Most targets are in the United States, Japan and South Korea.
Thallium often tries to trick the victim through a technique called spear phishing. By collecting targeted personal information through social media accounts, in networks from relevant organizations and other public sources, Thallium can create an extremely specialized phishing email. You can now deceive a victim to deceive the victim in response to the request outlined in the email. The email content may look legitimate at first glance, but a closer review shows that Thallium has faked Microsoft by combining the letters' r 'and' n 'so that when placed next to each other will look like the letter' m ', such as' rnicrosoft.com'.
The link in the fake email of Thallium will redirect the user to a website that requires credentials for authentication, then they will use this information to log in to the victim account. After successfully penetrating the victim's account, Thallium can review emails, contacts, calendar appointments and anything else they are interested in. In addition, they often create a new mail forwarding rule in the victim account settings. This mail forwarding rule will forward all new emails the victim receives to Thallium-controlled accounts. By using forwarding rules, Thallium can continue to access any email the victim receives, even after this account password is updated.
In addition to hijacking unauthorized login credentials, Thallium also uses malware to infect systems and steal data. The two types of malware commonly used by this group are called 'BabyShark' and 'KimJongRAT.'
To protect against these threats, Microsoft recommends users enable two-factor authentication on all personal and business email accounts they hold. Second, users need to learn how to detect phishing scams and protect themselves from them. Finally, turn on security alerts for links, files from suspicious websites and carefully check email forwarding rules on your account.
Jessica TannerYou should read it
- [Infographic] 4 types of Phishing are easy to trap users
- How to report phishing emails in Outlook.com
- Warning: New email phishing tactics appear
- How to identify phishing emails
- Microsoft warns of phishing campaigns targeting Outlook Web App and Office 365 users
- What is Domain Hijacking? How dangerous is it?
- Beware of the 7 most common types of spam
- 5 signs to identify phishing websites
May be interested
- Check out some of the serious security holes that need to be fixed in the first days of 2020
the year 2020 is near, and here are particularly serious gaps that need urgent patching. - 'Red alert' after the hack targeted Twitter, Facebook removed the feature matching contacts with phone numbers in Messengerthe ability to search for messenger users by phone number has been completely disabled by facebook.
- Smishing, public WiFi, deepfake ... but every security threat will explode in 2020the world of security is constantly moving, in parallel with the development speed of the internet as well as the technology field.
- Take a look at the most significant threats from the security world in 20192019 continues to be a volatile year for global security circles. many new and modern security methods are introduced, but along with it is the continuous progress from malicious agents.
- Nvidia released an emergency security patch for the GeForce GPUnvidia knows how to please users when sending them a meaningful 'gift' at christmas, which is an emergency security patch for the geforce gpu.
- Security recommendations from the FBI in response to LockerGoga and MegaCortex malwarelockergoga and megacortex are currently two of the ransomware strains that cause the biggest damage in 2019.
Attack the network
Notorious hacker group Hafnium deployed malicious code to target Windows, Microsoft stood still- Teen hacker is believed to be behind the notorious hacker group Lapsus$
- America found the notorious hacker 'Fxmsp', who was dubbed the 'Invisible God'
- Check out the 10 most notorious 'hacker groups' in the world
- Instructions on how to check .vn domain name on VNNIC
Notorious hacker group Hafnium deployed malicious code to target Windows, Microsoft stood still
Teen hacker is believed to be behind the notorious hacker group Lapsus$
America found the notorious hacker 'Fxmsp', who was dubbed the 'Invisible God'
Check out the 10 most notorious 'hacker groups' in the world
Instructions on how to check .vn domain name on VNNIC