"Global DNS Hijacking Campaign: DNS Record Manipulation at Scale"
The title is a bit wrong, though. It is not DNS hijacking; this is hijacking through DNS record manipulation. At any rate, interesting report.
@feld That was my point, yes :)
The thing is "cache poisoning" is heavily connoted, and is generally used to designate an attack that is almost inexistent in the wild.
These "iranian" attackers were simply serving fake records :)
A Mastodon instance for info/cyber security-minded people.