July 15, 2024 at 09:47AM Security researchers claim a series of DNS hijackings in web3 businesses are linked to Squarespace’s acquisition of Google Domains. Issue arose from Squarespace’s migration method, allowing cybercriminals to guess admin email addresses and register them. Attacks aimed to change DNS records, rerouting visitors to phishing sites. Firms impacted include Compound … Read more
July 12, 2024 at 02:34PM Coordinated DNS hijacking attacks impact decentralized finance (DeFi) crypto platforms using Squarespace registrar. Attackers redirect visitors to phishing sites, aiming to drain wallets. Platforms such as Compound Finance, Celer Network, and Pendle warn users and assure fund safety. Attackers exploit a vulnerability stemming from domain migration. Security experts recommend enabling … Read more
May 1, 2024 at 01:38PM The newly discovered malware “Cuttlefish” targets routers to steal authentication details, perform DNS and HTTP hijacking, and potentially evade detection. It primarily infects enterprise-grade and SOHO routers, with a focus on public cloud-based services. The malware has been active since at least last July and has links to HiatusRat, revealing … Read more