A nation-state sponsored espionage campaign dubbed Sea Turtle has been manipulating the domain name system to target more than 40 organizations, Cisco Talos says. The attacks are designed to steal credentials and passwords in an effort to gain greater access to the networks of these organizations. The ultimate goal is to spy on these networks to gain intelligence. The attackers use a variety of techniques to avoid detection, including faking security certificates and credentials. The Sea Turtle attacks, which started as far back as January 2017, are continuing, the researchers say.”]
Source: https://www.databreachtoday.com/sea-turtle-dns-hijacking-group-conducts-espionage-report-a-12390