Techly NewsGet the app

Get the latest tech news

Hackers Are Finding New Ways to Hide Malware in DNS Records


Newly published research shows that the domain name system—a fundamental part of the web—can be exploited to hide malicious code and prompt injection attacks against chatbots.

The practice allows malicious scripts and early-stage malware to fetch binary files without having to download them from suspicious sites or attach them to emails, where they frequently get quarantined by antivirus software. Researchers from DomainTools on Tuesday said they recently spotted the trick being used to host a malicious binary for Joke Screenmate, a strain of nuisance malware that interferes with normal and safe functions of a computer. An attacker who managed to get a toehold into a protected network could then retrieve each chunk using an innocuous-looking series of DNS requests, reassembling them, and then converting them back into binary format.

Get the Android app

Or read this on Wired

Read more on:

Photo of DNS

DNS

Photo of Hackers

Hackers

Photo of malware

malware

Related news:

News photo

UK retail giant Co-op confirms hackers stole all 6.5 million customer records

News photo

Hackers exploit a blind spot by hiding malware inside DNS records

News photo

Hackers Can Remotely Trigger the Brakes on American Trains and the Problem Has Been Ignored for Years

« Gmail/Google starts disabling features unless you agree to data processing
Swedish Vibe Coding Firm Lovable Hits $1.8 Billion Valuation »