Wednesday, December 19, 2018
  • 2018 In Review: Schools Under Attack
  • Download for a data breach. How to avoid unwanted data acquisition in downloadable documents
  • Enterprises continue to suffer from poor password hygiene and a lack of visibility & control over privileged users
  • ICT provider turns to Avast RMM for security | Avast Business
  • Supporting WireGuard development

Security Boulevard

The home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chats
    • CISO Conversations
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
Data Security SBN News Security Bloggers Network 

Home » Cybersecurity » Data Security » Microsoft Seized Six Fake Domains Mimicking U.S. Political Organizations

Microsoft Seized Six Fake Domains Mimicking U.S. Political Organizations

by David Bisson on August 21, 2018

Microsoft seized six fake domains that mimic the websites of prominent political organizations located in the United States.

On 20 August, the Redmond-based tech giant revealed that its Digital Crimes Unit (DCU) had successfully executed a court order to take control of six fake domains created by Fancy Bear. Also known as “Strontium” and “APT28,” Fancy Bear is one of the Russian digital crime groups that infiltrated the Democratic National Convention’s computer network during the lead-up to the 2016 U.S. presidential election and stole opposition research on then-Republican presidential nominee Donald Trump.

The six domains recently seized by Microsoft from Fancy Bear. (Source: Microsoft)

The Russian threat actor designed its fake domains to impersonate prominent U.S. political organizations. Among its targets were the International Republican Institute, an organization for which well-known Republican Senators including John McCain and Marco Rubio serve as board members, and the Hudson Institute, a conservative think tank known for its discussions on a range of topics including digital security. In addition, two of the domains targeted the U.S. Senate.

Microsoft said it has no evidence suggesting Fancy Bear leveraged those domains to conduct attacks. It also clarified that it doesn’t know whom Strontium was thinking about targeting at those entities.

Following its seizure of the domains, the tech giant notified both the International Republican Institute and Hudson Institute while continuing to monitor domain activity associated with the Senate IT staff. But Brad Smith, president and chief legal officer of Microsoft, said company officials are still concerned by what they perceive is a broadening range of activities by APT28. As he wrote in a blog post:

As a special master appointed by a federal judge concluded in the recent court order obtained by DCU, there is “good cause” to believe that Strontium is (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/microsoft-seized-six-fake-domains/

August 21, 2018August 21, 2018 David Bisson Fancy Bear, IT Security and Data Protection, Latest Security News, Microsoft, political
  • ← Save time and money this summer with Vigilant Software
  • Back to the Basics: The problem with forcing regular password expiry →

Predict 2019 Virtual Summit

Featured Blog

Fortinet All Blogs

Proactively Addressing New Cyberthreat Trends in Healthcare

Fortinet All Blogs

Securing the Industrial Internet of Things in OT Networks

Fortinet All Blogs

Common SD-WAN Security Mistakes

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

WordPress 5.0 Gets Security Patch a Week After Release
Public Clouds: Fertile Ground to Spread Malware
The Time for Passwords Came … and Went
OSS Security a Top Priority in National Cyber Strategy
More Shamoon 3 Attacks Detected in the Middle East and Europe
Equifax Data Breach Details Released, More Google+ API Bugs, Supermicro Strikes Back – WB47
Hackers are our society’s immune system – Keren Elazari on the future of Cybersecurity
What is a Phishing Scam? (And What to Do to Stop Attacks)
Why Using a VPN is a Good Idea – and How to Get Over the Drawbacks
GUEST ESSAY: The true cost of complacency, when it comes to protecting data, content

Upcoming Webinars

There are no upcoming webinars at this time.

Download Free eBook

Securing the Code: DevOps Security and AppSec

CISO/Security Vendor Relationship Series

CISO/Security Vendor Relationship Podcast

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Enrich Your SIEM with Real-Time Event Contextualization
Cybersecurity Industry Spotlight Security Boulevard (Original) Threat Intelligence 

Enrich Your SIEM with Real-Time Event Contextualization

December 19, 2018 Siddhant Mishra | 6 hours ago 0
3 Ways AI is Securing Crypto Exchanges
Blockchain Digital Currency Industry Spotlight Security Boulevard (Original) 

3 Ways AI is Securing Crypto Exchanges

December 18, 2018 Ivan Novikov | Yesterday 0
The Time for Passwords Came … and Went
Cybersecurity Identity & Access Industry Spotlight Security Boulevard (Original) 

The Time for Passwords Came … and Went

December 17, 2018 Georg Greve | 2 days ago 0

Top Stories

More Shamoon 3 Attacks Detected in the Middle East and Europe
Endpoint Malware News Security Boulevard (Original) 

More Shamoon 3 Attacks Detected in the Middle East and Europe

December 18, 2018 Lucian Constantin | Yesterday 0
WordPress 5.0 Gets Security Patch a Week After Release
Data Security DevOps Featured News Security Boulevard (Original) Spotlight Threats & Breaches Vulnerabilities 

WordPress 5.0 Gets Security Patch a Week After Release

December 14, 2018 Lucian Constantin | 4 days ago 0
Destructive Shamoon Malware Hits Italian Oil and Gas Firm
Featured Identity & Access Malware News Security Boulevard (Original) Social Engineering Spotlight 

Destructive Shamoon Malware Hits Italian Oil and Gas Firm

December 14, 2018 Lucian Constantin | Dec 14 0

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2018 MediaOps Inc. All rights reserved.

Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.