Summary: Unit 42 researchers have identified a new malware campaign utilizing typo-squatting domain generation algorithms (DGAs), which create misleading domain names with intentional typos. This campaign has registered over 6,000 domains, redirecting users to potentially unwanted Android applications and showcasing an automated operation strategy. The findings underscore the need for enhanced security measures to protect against the evolving tactics of cyber threats.
Affected: Organizations and individuals engaging with online content.
Keypoints :
- Introduction of a novel malware tactic known as typo DGAs, which targets legitimate domain names by using intentional typographical errors.
- Identification of over 6,000 newly registered domains, largely linked to a single threat actor, redirecting to adult content and unwanted applications.
- Highlighting the necessity for robust security solutions to detect subtle variations in potentially malicious domain names.
Source: https://securityonline.info/typo-dgas-a-new-tactic-in-malicious-redirection-campaigns/