Global CyberSecurity

JavaScript Malware Switches to Server-Side Redirects & DNS TXT Records as TDS

0

Published on 04/18/2024 – Last Updated on 04/19/2024 by OTC

Last August we documented a malware campaign that was injecting malicious JavaScript code into compromised WordPress sites to redirect site visitors to VexTrio domains. The most interesting thing about that malware was how it used dynamic DNS TXT records of the tracker-cloud[.]com domain to obtain redirect URLs.

We’ve been tracking this campaign ever since — and we’ve recorded multiple changes in obfuscation techniques and domain names used in their DNS TXT traffic direction system (TDS).

Continue reading JavaScript Malware Switches to Server-Side Redirects & DNS TXT Records as TDS at Sucuri Blog.

Is Your Website Ready For Take Off? A Useful Website Launch Checklist

Previous article

11 Tips To Attract Visitors and Increase Your Website Traffic

Next article

You may also like

Comments

Comments are closed.