infographic
• Wide-reaching impact: The hijacked domains are used to distribute a variety of scams, including fake advertisements and malicious push notifications, affecting millions of users globally
• Economic consequences: The scams facilitated by Hazy Hawk contribute to the multi-billiondollar fraud market, with significant financial losses reported, particularly among the elderly population in the US
• Obfuscation: Hazy Hawk uses layered defences to protect their operations, including hijacking reputable domains, obfuscating URLs and redirecting traffic through multiple domains
Protective measures
To thwart threat actors like Hazy Hawk, organisations should implement robust DNS management practices, including regular audits of DNS records and prompt removal of records associated with discontinued cloud services.
Additionally, users should be educated to deny push notification requests from unfamiliar websites to avoid falling victim to scams.
WWW. INTELLIGENTCISO. COM 23