Skip to Content

Domain shadowing threat

Palo Alto’s Unit42 security team has a report out on “domain shadowing,” a technique where threat actor gains access to a domain’s DNS records and use it to create subdomains without the owner’s knowledge, where they host malicious content. The company said it’s currently detecting 12,197 domains that have been “shadowed” and have subdomains hosting malware or other malicious content.

Unit 42 researchers spotted 12,197 cases of domain shadowing between April and June. The phishing campaign compromised 16 domains to build 649 sub-domains.


    Ads Blocker Image Powered by Code Help Pro

    Your Support Matters...

    We run an independent site that\'s committed to delivering valuable content, but it comes with its challenges. Many of our readers use ad blockers, causing our advertising revenue to decline. Unlike some websites, we haven\'t implemented paywalls to restrict access. Your support can make a significant difference. If you find this website useful and choose to support us, it would greatly secure our future. We appreciate your help. If you\'re currently using an ad blocker, please consider disabling it for our site. Thank you for your understanding and support.