Microsoft Seize Domains Used To Attack Attacking Governments

Microsoft recently announced that it has seized dozens of domains belonging to the Chinese APT group Nickel.

The domains were used to launch attacks against governments and NGOs in countries on three different continents (Europe, the Americas, and the Caribbean). The decision was made after the company obtained permission from a federal court in Virginia to seize websites that the group used to steal data in the United States and other countries.

Following Microsoft’s explanation of how the group works, the company revealed that the attacks involve the deployment of hard-to-detect malware that allows intrusion, surveillance and data theft. Further revelations from the Microsoft Threat Intelligence Centre revealed that sometimes, Nickel compromise VPN providers or gains access to stolen credentials.

In some other cases, too, they simply compromise unpatched Exchange Server and SharePoint systems. Once they gain access to a network, the attackers look for ways to gain access to higher-value accounts in order to achieve a solid network presence.

For more information read the original story in ZDNet.

Microsoft Seize Domains Used To Attack Attacking Governments

Top Stories

New Deepfakes Can Mimic Heartbeats, Evading Detection Tools

RBC Pushes Employees Back to Office to Preserve ‘Winning Culture’

Microsoft Azure Closes Cloud Gap with AWS as AI and Enterprise Migrations Fuel Growth

Sleeper Supply Chain Attack Activates After 6 Years

Dell has another major round of layoffs

One of the biggest data breaches ever, billions of users affected

Related Articles

65% of Canadians Still Reusing Passwords Despite Identity Theft Fears, Okta Study

Ottawa Warns of China-Linked Hack on Canadian Telecom Gear

MIT Warns SpaceX Could Lose Up to Two‑Thirds of Starlink Fleet to Orbital Congestion

Canadians Give Themselves a ‘C’ on AI Skills, TD Survey Finds

Jim Love

Follow Us

Popular categories

Tech News Delivered