Monday, July 13, 19:32 p.m.
Home security Coincheck: Hackers violated domain for spear-phishing attacks

Coincheck: Hackers violated domain for spear-phishing attacks

Coincheck

The Japanese service cryptocurrency exchange, Coincheck, announced that he fell victim hacking attack. The attackers violated one of them domain names and used it for spear-phishing attacks to customers of the service.

Coincheck has discontinued some of its services platform on Tuesday to investigate the incident. Other activities, such as withdrawals and deposits, have not been excluded.

According to one reference released on Tuesday, the company said the original attack took place on Sunday 31 May. The hackers acquired access to Coincheck's account on Oname.com (company domain registrar).

Koincheck did not provide technical details attack. However, the Japanese security researcher Masafumi Negishi said the attackers modified the basic DNS entry for Coincheck's coincheck.com domain.

Coincheck uses the service Amazon's DNS. This means that an Amazon DNS server handled the various processes.

According to Masafumi, the hackers recorded a similar domain on the AWS server and replaced the original awsdns-61.org to awsdns-061.org (extra 0 ahead of 61) in Oname.com's backend. This allowed the attackers to manage DNS queries for the Coincheck portal.

spear-phishing

The hackers did not use this access to redirect the entire traffic of the service to a "Coincheck clone", because such attack it would be immediately apparent.

So they started sending spear-phishing emails to specific users. The emails were supposed to come from the coincheck.com domain. In fact, user responses were sent to hackers' servers.

Coincheck said she spotted the attack when she noticed some "irregularities" in the traffic. The attackers had access to the company's domain until Monday, June 1, 20:52, Tokyo time.

It is believed that the hackers asked them usersvictims verify their account information via spear-phishing emails. They could then use the data to steal money or carry out other attacks.

According to Coincheck, hackers contacted at least 200 customers.

At present, we do not know if the hackers used in some way the data they obtained through spear-phishing emails.

In 2018, the exchange service was hacked and lost 500 million dollars.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!

LIVE NEWS

00:02:36

Browser War: Safari and Edge threaten Chrome

The new Edge browser, released for Windows 10 Home and now available for download on Mac, is based on Chromium, which ...

PC sales worldwide have increased due to coronavirus

The outbreak of the coronavirus pandemic has affected all areas of our lives. After health and other industries have been hit ...

MIT: They make a robot handle that will be able to distinguish cables!

MIT researchers have developed a robot handle with the ability to handle very thin objects such as ropes and cables, according to a statement.

Fedora 33: Will contain Nano as the default text editor

Have you ever thought, who is your favorite text editor, when we talk about operating systems based on ...

Hacker was selling databases of the Ukrainian government

A Ukrainian hacker has been arrested for selling confidential information collected from Ukrainian government databases. According to a ...
00:02:11

TikTok downloaded 49 million videos that violated the terms of use

TikTok downloaded more than 49 million videos from users around the world in the second half of 2019, according to ...

United Kingdom: Is Huawei's immediate foreclosure "dangerous"?

Philip Jansen, CEO of the British telecommunications company "BT", stated that any government move demands the immediate exclusion of the Huawei kit from ...

Dark Mode comes in Google Docs, Sheets and Slides for Android

Do you spend a lot of time using Google Docs, Sheets or Slides on your Android phone or tablet? We have good news for you ...

Hackers seek to exploit vulnerabilities in Citrix ADC

Last week, Citrix released fixes for a total of 11 vulnerabilities in some of its most popular products, in which ...

Data from 45 million travelers are on the dark web

Security researchers from Cyble discovered in the web web files of 45 million travelers from various countries with ...