Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Researchers Predict Phishing Domains to Block APTs - Infosecurity Magazine

9ba1b585-68d1-4828-b16b-0f35ceb83430

Security firm OpenDNS claims to have developed a new way to detect and block APTsusing natural language processing (NLP) and other analytics to identify the spoofed domains frequently used to serve up malware.

OpenDNS Security Labs analyzed data from the notorious Carbanak attacks as well as DarkHotel and other APT campaigns like Anunak.

From this itcreated a predictive model to spot “potentially malicious typo-squatting/targeted phishing domains” which often serve as C&C domains in targeted attacks.

Researcher Jeremiah O'Connor explained more in a blog post:

“Essentially we are defining a ‘malicious language’ within the lexical nature of DNS traffic, and applying sentiment analysis on FQDNs [fully qualified domain names]. In an attempt to construct this language, we have created a corpus of domains that elicit a common pattern where adversaries merge together certain dictionary words and tech company strings.”

The resulting tool is NLPRank:

“NLPRank … utilizes heuristics...(continued)

View All Trending Stories