Wednesday, September 19, 2018
  • Your Business Should Be More Afraid of Phishing than Malware
  • What Security Leaders Can Do To Stay Relevant
  • Guarding the Gate: Cybersecurity De-Mystified
  • U.S. Federal IoT Policy: What You Need to Know
  • Must-Attend MSIgnite 2018: The Intelligent Cloud Leads the Pack

Security Boulevard

The home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chats
    • CISO Conversations
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
Data Security SBN News Security Bloggers Network 

Home » Cybersecurity » Data Security » Microsoft Seized Six Fake Domains Mimicking U.S. Political Organizations

Microsoft Seized Six Fake Domains Mimicking U.S. Political Organizations

by David Bisson on August 21, 2018

Microsoft seized six fake domains that mimic the websites of prominent political organizations located in the United States.

On 20 August, the Redmond-based tech giant revealed that its Digital Crimes Unit (DCU) had successfully executed a court order to take control of six fake domains created by Fancy Bear. Also known as “Strontium” and “APT28,” Fancy Bear is one of the Russian digital crime groups that infiltrated the Democratic National Convention’s computer network during the lead-up to the 2016 U.S. presidential election and stole opposition research on then-Republican presidential nominee Donald Trump.

The six domains recently seized by Microsoft from Fancy Bear. (Source: Microsoft)

The Russian threat actor designed its fake domains to impersonate prominent U.S. political organizations. Among its targets were the International Republican Institute, an organization for which well-known Republican Senators including John McCain and Marco Rubio serve as board members, and the Hudson Institute, a conservative think tank known for its discussions on a range of topics including digital security. In addition, two of the domains targeted the U.S. Senate.

Microsoft said it has no evidence suggesting Fancy Bear leveraged those domains to conduct attacks. It also clarified that it doesn’t know whom Strontium was thinking about targeting at those entities.

Following its seizure of the domains, the tech giant notified both the International Republican Institute and Hudson Institute while continuing to monitor domain activity associated with the Senate IT staff. But Brad Smith, president and chief legal officer of Microsoft, said company officials are still concerned by what they perceive is a broadening range of activities by APT28. As he wrote in a blog post:

As a special master appointed by a federal judge concluded in the recent court order obtained by DCU, there is “good cause” to believe that Strontium is (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/microsoft-seized-six-fake-domains/

August 21, 2018August 21, 2018 David Bisson 0 Comments Fancy Bear, IT Security and Data Protection, Latest Security News, Microsoft, political
  • ← Save time and money this summer with Vigilant Software
  • Back to the Basics: The problem with forcing regular password expiry →
Featured Blog

2 weeks ago

A Brighter Future For DevSecOps? It’s Closer Than You Think

1 month ago

Secure Code Dojo: How to Defeat SQL Injection

2 months ago

Why gamification is the key to leveling up your software security

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

New Android Botnet Pops Up on Malware-as-a-Service Market
IT Security: Bomgar to Become BeyondTrust
Study Finds Mobile Fraud, Threats Soar
Do You Have Security Champions in Your Company?
Our All White Male Panel Discusses Diversity in Cybersecurity – CISO/Security Vendor Relationship Podcast
Developing Cyber Security Incident Response Plans for Industrial Control Systems
BlackBerry Massively Steps Up Security Efforts to Address Threat Storm
8 critical safety tips for safer online banking
Erlang Authenticated Remote Code Execution
50 Best Cloud Security Podcasts

Upcoming Webinars

Jun 29

Security as Code

June 29, 2017 @ 1:00 pm - 2:00 pm
Wed 27

Better Training for Better Security

September 27, 2017 @ 1:00 pm - 2:00 pm
Jan 18

Your Resolution for 2018: Five Principles For Securing DevOps

January 18 @ 11:00 am - 12:00 pm
Apr 02

RSA 2018- What’s Hot in the Cyber Security Space

April 2 @ 1:00 pm - 2:00 pm
Feb 12

How Machine Learning & AI Will Improve Cyber Security

February 12 @ 1:00 pm - 2:00 pm
Jan 11

On-Demand Viewing: Is GDPR Getting Ready to Give Your Company the Left Hook?

January 11 @ 8:00 am - 5:00 pm
Feb 22

2018 – The Year Ahead in Cybersecurity

February 22 @ 11:00 am - 12:00 pm
Feb 15

Implementing Secure DevOps: Challenges and Opportunities

February 15 @ 1:00 pm - 2:00 pm
Mar 07

After the Data Breach: Stolen Credentials

March 7 @ 3:00 pm - 4:00 pm
Mar 01

Seven Deadly Saves To Security With Integrations

March 1 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

Mastering Hybrid Cloud Security

CISO/Security Vendor Relationship Series

CISO/Security Vendor Relationship Podcast

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Do You Have Security Champions in Your Company?
Cybersecurity Industry Spotlight Security Awareness Security Boulevard (Original) 

Do You Have Security Champions in Your Company?

September 18, 2018 Shubham Vashist | Yesterday 0
What the Healthcare Industry Needs: Cybersecurity Pros
Cybersecurity Industry Spotlight Network Security Security Boulevard (Original) 

What the Healthcare Industry Needs: Cybersecurity Pros

September 13, 2018 Tom Gilheany | Sep 13 0
Security Gets ‘Baked In’ at VMworld
DevOps Industry Spotlight Security Boulevard (Original) 

Security Gets ‘Baked In’ at VMworld

September 12, 2018 Tim Woods | Sep 12 0

Top Stories

NVR Software Flaw Threatens Thousands of Devices
Featured IoT & ICS Security Network Security News Security Boulevard (Original) Spotlight Vulnerabilities 

NVR Software Flaw Threatens Thousands of Devices

September 18, 2018 Lucian Constantin | Yesterday 0
IT Security: Bomgar to Become BeyondTrust
Cybersecurity Featured Identity & Access News Spotlight 

IT Security: Bomgar to Become BeyondTrust

September 14, 2018 Michael Vizard | 4 days ago 0
New Android Botnet Pops Up on Malware-as-a-Service Market
Featured IoT & ICS Security Malware Mobile Security News Security Boulevard (Original) Spotlight Vulnerabilities 

New Android Botnet Pops Up on Malware-as-a-Service Market

September 14, 2018 Lucian Constantin | 4 days ago 0

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2018 Mediaops Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.