The domain of almost 99 hacking sites is now under the Microsoft control as per the US court order. They claimed this right after saying that their brand has been harmed and the value of their trade masquerading by the frauds. Now, these sites are been seized by Microsoft and they have plotted a plan known as “sinkhole” to monitor the traffic. All the trouble were caused by the group APT 35 hackers also known as phosphorous has paved the way to a cyber war with Microsoft.
Cyberwar is now happening all around the world in one form or the another. APT 35 is a well known Iranian cybercrime group which fakes the look and trade of well-reputed Microsoft products, Hotmail, LinkedIn. Phosphorous hack the personal account of the individual through a method of spear phishing. It is a fraudulent practice of sending emails ostensibly from a known or trusted sender in order to induce targeted individuals to reveal confidential information. People who were involved in the Treasury Department were the main victims of their attack as per a person who knew about these attacks.
Microsoft said that this hacker is also known as a charming kitten, linked with an Iran roup. These hackers lay their trap by prompting the users to click on a particular link that installs the malware. As a result, they get an entry to the credential login of the victim. It will help them gradually to log in to their official system as well. On March 15, Judge Amy Berman of the United States in district court in Washington granted a temporary order that allowed Microsoft to gain control over this website. This tactic was earlier used by Microsoft for fighting the Botnet that spits out spam mail.
Mode Of operation
In order to control these malicious hacking operations, Microsoft has now opted the method of Sinkhole. Sinkhole attack is a type of attack where the compromised node tries to attract network traffic by advertising its fake routing update. It would help the security analyst to analysis and captures the hackers. They are now able to track individual Phosphorous attacks and notify the impacted customers through this operation. Microsoft also assures that by connecting with other tech giants like Yahoo, they could jointly stop this attack by sharing threat information. Hopefully, it’s been expected that this operation to cover the rest of malicious sites soon.