Sunday, November 17, 2019
  • Derbycon2019, Josh Bryant’s & Robert Falcone’s ‘Hunting Webshells: Tracking TwoFace’
  • The Joy of Tech®, ‘A New Sense Of Peace!’
  • Cybersecurity Due Diligence Checklist
  • Derbycon2019, Paul Coggin’s ‘SS7 for INFOSEC’
  • The Internet: Looking Back and Forward 50 Years

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Data Security SBN News Security Bloggers Network 

Home » Cybersecurity » Data Security » Microsoft Seized Six Fake Domains Mimicking U.S. Political Organizations

Microsoft Seized Six Fake Domains Mimicking U.S. Political Organizations

by David Bisson on August 21, 2018

Microsoft seized six fake domains that mimic the websites of prominent political organizations located in the United States.

On 20 August, the Redmond-based tech giant revealed that its Digital Crimes Unit (DCU) had successfully executed a court order to take control of six fake domains created by Fancy Bear. Also known as “Strontium” and “APT28,” Fancy Bear is one of the Russian digital crime groups that infiltrated the Democratic National Convention’s computer network during the lead-up to the 2016 U.S. presidential election and stole opposition research on then-Republican presidential nominee Donald Trump.

The six domains recently seized by Microsoft from Fancy Bear. (Source: Microsoft)

The Russian threat actor designed its fake domains to impersonate prominent U.S. political organizations. Among its targets were the International Republican Institute, an organization for which well-known Republican Senators including John McCain and Marco Rubio serve as board members, and the Hudson Institute, a conservative think tank known for its discussions on a range of topics including digital security. In addition, two of the domains targeted the U.S. Senate.

Microsoft said it has no evidence suggesting Fancy Bear leveraged those domains to conduct attacks. It also clarified that it doesn’t know whom Strontium was thinking about targeting at those entities.

Following its seizure of the domains, the tech giant notified both the International Republican Institute and Hudson Institute while continuing to monitor domain activity associated with the Senate IT staff. But Brad Smith, president and chief legal officer of Microsoft, said company officials are still concerned by what they perceive is a broadening range of activities by APT28. As he wrote in a blog post:

As a special master appointed by a federal judge concluded in the recent court order obtained by DCU, there is “good cause” to believe that Strontium is (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/microsoft-seized-six-fake-domains/

August 21, 2018August 21, 2018 David Bisson Fancy Bear, IT Security and Data Protection, Latest Security News, Microsoft, political
  • ← Save time and money this summer with Vigilant Software
  • Back to the Basics: The problem with forcing regular password expiry →
Featured Blog

Enzoic

Firm Cybersecurity: Professional Services Firms are Vulnerable Targets

Enzoic

Automate Password Policy & NIST Password Guidelines

Enzoic

Why Biometric Authentication is Just Part of the Security Puzzle

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Twitter and the Saudi Computer Crime – Or Was It?
Aventura Charged With Selling Chinese-Made Security Equipment
Business Espionage: Security Threats for Small-Business Owners
Aqua Security Acquires CloudSploit to Monitor Configs
ZeroNorth Brings Risk Intelligence to DevOps
Facebook App for iOS Caught Accessing Camera in Background
Vulnerability Management Program Best Practices
The Underworld Economy
How to REALLY Browse Anonymously
Combating the Continuous Development of Vulnerable Software

Upcoming Webinars

Mon 18

Scaling DevSecOps

November 18 @ 1:00 pm - 2:00 pm
Tue 19

SAP Concur’s Cloud Journey

November 19 @ 1:00 pm - 2:00 pm
Dec 09

Cloud Security – Keeping Serverless Data Safe

December 9 @ 11:00 am - 12:00 pm
Dec 10

Securing Mobile Apps, From the Inside Out

December 10 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

Open Source Security: Weighing the Pros and Cons

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Phishing Increasingly Targets SaaS, Webmail
Cybersecurity Industry Spotlight Security Boulevard (Original) Social Engineering 

Phishing Increasingly Targets SaaS, Webmail

November 15, 2019 Dean Coclin | 2 days ago 0
Network Infrastructure Security: An Underserved Market
Cybersecurity Industry Spotlight Network Security Security Boulevard (Original) 

Network Infrastructure Security: An Underserved Market

November 14, 2019 Thomas Carnevale | 3 days ago 0
Business Espionage: Security Threats for Small-Business Owners
Cybersecurity Industry Spotlight Security Awareness Security Boulevard (Original) 

Business Espionage: Security Threats for Small-Business Owners

November 13, 2019 Tony Tomov | 4 days ago 0

Top Stories

Report: Retail Sector Under Cybersecurity Siege
Cybersecurity Featured Network Security News Security Boulevard (Original) Spotlight Threats & Breaches 

Report: Retail Sector Under Cybersecurity Siege

November 15, 2019 Michael Vizard | 2 days ago 0
1Password Secures $200M in Series A Funding, Heads for the Enterprise
Cybersecurity Featured Identity & Access News Security Boulevard (Original) Spotlight 

1Password Secures $200M in Series A Funding, Heads for the Enterprise

November 15, 2019 Frank Ohlhorst | 2 days ago 0
TPM-FAIL: Intel and STMicro ‘Fix’ 26-Year-Old Vulnerability
Application Security Cybersecurity Data Security Featured Mobile Security News Security Boulevard (Original) Spotlight Threats & Breaches Vulnerabilities 

TPM-FAIL: Intel and STMicro ‘Fix’ 26-Year-Old Vulnerability

November 14, 2019 Richi Jennings | 3 days ago 0

Security Humor

via   the Comic Noggins of  Nitrozac  and  Snaggy  at  The Joy of Tech®

The Joy of Tech®, ‘A New Sense Of Peace!’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2019 MediaOps Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.