Hackers Abuse DNS Blind Spots to Stealthily Deliver Malware

Hackers Abuse DNS Blind Spots to Stealthily Deliver Malware Cybersecurity researchers have uncovered a sophisticated technique where threat actors are exploiting DNS infrastructure to covertly store and distribute malware, turning the internet’s domain name system into an unwitting accomplice for malicious activities. The discovery reveals how attackers can hide executable files within DNS TXT records, creating a stealthy delivery mechanism that bypasses traditional security measures. The attack method involves partitioningmalwarefiles into smaller segments and storing them across multiple DNS TXT records after converting them to hexadecimal format. Security researchers analyzing passively collected DNS records found evidence of this technique being actively used between 2021-2022, with attackers embedding complete executable files within seemingly innocuous DNS entries. “Files can be partitioned and stored in DNS TXT records, then retrieved via DNS requests and put back together,” exp...