| SYMBOL | COMMON_NAME | aka. SYNONYMS |
This blog post discusses the technical details of a state-sponsored attack manipulating DNS systems. While this incident is limited to targeting primarily national security organizations in the Middle East and North Africa, and we do not want to overstate the consequences of this specific campaign, we are concerned that the success of this operation will lead to actors more broadly attacking the global DNS system. DNS is a foundational technology supporting the Internet. Manipulating that system has the potential to undermine the trust users have on the internet. That trust and the stability of the DNS system as a whole drives the global economy. Responsible nations should avoid targeting this system, work together to establish an accepted global norm that this system and the organizations that control it are off-limits, and cooperate in pursuing those actors who act irresponsibly by targeting this system.
| 2024-01-05
⋅
HUNT & HACKETT
⋅
Turkish espionage campaigns in the Netherlands SnappyTCP |
| 2023-12-27
⋅
StrikeReady
⋅
Pivoting through a Sea of indicators to spot Turtles SnappyTCP |
| 2023-12-05
⋅
PWC
⋅
The Tortoise and The Malwahare SnappyTCP |
| 2022-02-16
⋅
CrowdStrike
⋅
Global Threat Report 2022 Sea Turtle |
| 2021-10-01
⋅
Microsoft
⋅
Microsoft Digital Defense Report Sea Turtle |
| 2021-02-28
⋅
PWC UK
⋅
Cyber Threats 2020: A Year in Retrospect elf.wellmess FlowerPower PowGoop 8.t Dropper Agent.BTZ Agent Tesla Appleseed Ave Maria Bankshot BazarBackdoor BLINDINGCAN Chinoxy Conti Cotx RAT Crimson RAT DUSTMAN Emotet FriedEx FunnyDream Hakbit Mailto Maze METALJACK Nefilim Oblique RAT Pay2Key PlugX QakBot REvil Ryuk StoneDrill StrongPity SUNBURST SUPERNOVA TrickBot TurlaRPC Turla SilentMoon WastedLocker WellMess Winnti ZeroCleare APT10 APT23 APT27 APT31 APT41 BlackTech BRONZE EDGEWOOD Inception Framework MUSTANG PANDA Red Charon Red Nue Sea Turtle Tonto Team |
| 2020-03-03
⋅
PWC UK
⋅
Cyber Threats 2019:A Year in Retrospect KevDroid MESSAGETAP magecart AndroMut Cobalt Strike CobInt Crimson RAT DNSpionage Dridex Dtrack Emotet FlawedAmmyy FlawedGrace FriedEx Gandcrab Get2 GlobeImposter Grateful POS ISFB Kazuar LockerGoga Nokki QakBot Ramnit REvil Rifdoor RokRAT Ryuk shadowhammer ShadowPad Shifu Skipper StoneDrill Stuxnet TrickBot Winnti ZeroCleare APT41 MUSTANG PANDA Sea Turtle |
| 2020-02-25
⋅
Tilting at Windmills
⋅
On Sea Turtle campaign targeting Greek governmental organisations Sea Turtle |
| 2020-02-06
⋅
DomainTools
⋅
Finding Additional Indicators With a SeaTurtle Deep Dive in Passive DNS Within DomainTools Iris Sea Turtle |
| 2020-01-27
⋅
Reuters
⋅
Exclusive: Hackers acting in Turkey's interests believed to be behind recent cyberattacks - sources Sea Turtle |
| 2019-11-07
⋅
Virus Bulletin
⋅
DNS on Fire DNSpionage Sea Turtle |
| 2019-11-07
⋅
Virus Bulletin
⋅
DNS on FIre DNSpionage Sea Turtle |
| 2019-07-09
⋅
Cisco Talos
⋅
Sea Turtle keeps on swimming, finds new victims, DNS hijacking techniques Sea Turtle |
| 2019-05-21
⋅
ICANN
⋅
Cybersecurity & the ICANN Ecosystem Sea Turtle |
| 2019-05-21
⋅
ICANN
⋅
ATLAS III Webinar 5: Cybersecurity Basics Sea Turtle |
| 2019-04-17
⋅
Cisco Talos
⋅
DNS Hijacking Abuses Trust In Core Internet Service Sea Turtle |
| 2019-01-09
⋅
Mandiant
⋅
Global DNS Hijacking Campaign: DNS Record Manipulation at Scale DNSpionage Sea Turtle |