Google Public DNS now supports DNS over TLS

  • NIC-CERT/2019-01/184
  • Date: 2019-01-18

1. Google Public DNS now supports DNS-over-TLS

To avoid spoofing attacks and information disclosure about web activity, Google announced Wednesday that its Public DNS (Domain Name System) service finally supports DNS-over-TLS security protocol, which means that the DNS queries and responses will be communicated over TLS-encrypted TCP connections.The DNS-over-TLS has been designed to make it harder for man-in-the-middle attackers to manipulate the DNS query or eavesdrop on your Internet connection.

References:https://security.googleblog.com/2019/01/google-public-dns-now-supports-dns-over.html

2. New Malware Takes Commands From Memes Posted On Twitter

In the recently spotted malicious campaign in which the hackers uses Steganography to hide the malicious commands embedded in a meme posted on Twitter, which the malware then parses and executes.

Although the internet meme looks a normal image to human eyes, the command "/print" is hidden in the file's metadata, which then prompts the malware to send a screenshot of the infected computer to a remote command-and-control server.

Reference:https://blog.trendmicro.com/trendlabs-security-intelligence/cybercriminals-use-malicious-memes-that-communicate-with-malware/

3. Crypto-Mining, Banking Trojans Top Malware Threats

As per the latest report Crypto-mining malware has again topped the threat index, with Coinhive holding strong in the number one malware threat for the 13th consecutive month.

Open-source CPU mining software XMRig followed behind Coinhive, and JavaScript miner Jsecoin rounded out the top three, demonstrating that diversity.

Top 3 most exploited vulnerabilities are CVE-2017-7269, CVE-2014-0160 & CVE-2014-0346.

Reference:https://blog.checkpoint.com/2019/01/14/december-2018-most-wanted-malware-smokeloader-crypto-malware-ransomware/

4. Love Letter MalSpam Is Ready To Spread Malware

A large malspam campaign has been discovered that uses romantic and endearing email subjects to trick recipients into getting infected with ransomware, miners, and more.

The "Love Letter" campaign consists of emails that contains romantic and endearing subjects such as "Love You" and "This is my love letter to you". Attached to these emails are ZIP attachments such as Love_You_14473721-2019-txt.zip, which contain a JavaScript file with a similar name.

Reference:https://www.bleepingcomputer.com/news/security/hope-youre-using-protection-as-love-letter-malspam-has-nasty-surprises/