Microsoft seizes domains Russia was using to attack Ukraine
Microsoft says it has taken control of some domain names that we being using by hackers connected to the Russian security services to launch cyber attacks against Ukrainian, US and EU targets.
Company VP Tom Burt wrote that seven domains used by a group called Strontium were seized via a US court order and redirected to a Microsoft sinkhole, disrupting these attacks.
Burt wrote that the targets were Ukrainian media organizations and US and EU foreign policy think tanks, adding:
We believe Strontium was attempting to establish long-term access to the systems of its targets, provide tactical support for the physical invasion and exfiltrate sensitive information.
One wonders why Russia would use domains under US jurisdiction to conduct such attacks.
Ukraine’s ccTLD has maintained what appears to be a healthy level of new registrations, despite the Russian invasion. The company today reported that between February 24 and March 25, it saw over 3,000 new .ua domain regs, over 2,000 of which were in .com.ua. The ccTLD offers names in a…
Hostmaster, the Ukrainian ccTLD registry, has indefinitely paused domain deletions due to the ongoing war with Russian. The company said its domain redemption period, which usually lasts 30 days after a registration expires, will now run until the end of martial law, which was brought in by the government shortly…
Ukraine has asked ICANN to take down Russia’s top-level domains. Andrii Nabok, the Ukrainian official on ICANN’s Governmental Advisory Committee made the request, asking the Org to “Revoke, permanently or temporarily, the domains .ru, .рф and .su” in a widely circulated email last night. He also asked for DNS root…