Cybercriminals Using Novel DNS Hijacking Technique for Investment Scams

March 5, 2024 at 06:45AM Savvy Seahorse, a new DNS threat actor, uses sophisticated techniques to lure victims into fake investment platforms, targeting individuals from various countries. They use DNS records to create a traffic distribution system, making it difficult to detect and take down their phishing sites. Victims are tricked into providing personal information … Read more

Savvy Seahorse gang uses DNS CNAME records to power investor scams

February 28, 2024 at 09:39AM Savvy Seahorse uses CNAME DNS records to create a traffic distribution system for financial scam campaigns. Infoblox researchers uncovered this operation in August 2021, noting the use of chatbots to automate scamming and the abuse of DNS CNAME records to manage redirects and evade detection. The actor targets victims through … Read more