Sitting Ducks DNS Attack Hijack 35,000 Domains

Threat actors have been exploiting the attack vector known as Sitting Ducks since at least 2019 to conduct malware delivery, phishing, brand impersonation, and data exfiltration by exploiting flaws in DNS.

This widespread flaw, affecting multiple DNS providers, enables domain hijacking without detection.

Besides this, the researchers from Infoblox and Eclypsium have unveiled this critical vulnerability in the DNS infrastructure.

As a result, researchers discovered that it affects around one million domains, leading to over 30,000 cases of confirmed hijacking due to poor domain verification by DNS providers.