Beginning on or around threat actors began an attack on cryptocurrency trading platform, liquid.com, by targeting employees at domain hosting provider, GoDaddy. GoDaddy employees were tricked into transferring ownership and/or control of targeted domains to the threat actors. In March a similar campaign took place with GoDaddy, in which threat actors used a voice phishing scam to take over several domain names including escrow.com. It has not been confirmed how GoDaddy employees were deceived in the most recent attack. The March attack, the assailants targeted employees over the phone, and were able to read internal notes that GoDaddy employees had left on customer accounts. The liquid.com CEO stated the attackers were able to “change DNS records and in turn, take control of a number of internal email accounts. In due course, the malicious actor was able to partially compromise our infrastructure, and gain access to document storage.” Experts believe believe that these attacks have recently become more effective as people have been forced to work from home due to the COVID-19 pandemic.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security