Godlike Productions - Discussion Forum
Users Online Now: 2,212 (Who's On?)Visitors Today: 1,280,805
Pageviews Today: 2,128,213Threads Today: 820Posts Today: 14,540
09:01 PM



Rate this Thread

Absolute BS Crap Reasonable Nice Amazing
 
Page 1
Bottom
Search Replies
Previous Page
Next Page

Disinformation of Charlie Hebdo: Analyzing a Fake BBC News Site

 
Anonymous Coward
User ID: 66880818
Canada
01/15/2015 11:48 AM
Report Abusive Post
Report Copyright Violation
Disinformation of Charlie Hebdo: Analyzing a Fake BBC News Site
You may have noticed that a few media outlets have been reporting that a fake BBC website was setup to spread disinformation regarding the recent Charlie Hebdo attacks in Paris, France.On January 12, 2015 our advanced threat protection flagged the bbc-news[.]co[.]uk domain as a suspicious site. While we can’t say definitively what the motives are of the operators are, it is apparent that they are untrustworthy and potentially nefarious. The predictive classification that we used to identify and flag the site is showing the attack is very similar to former incidents that malicious actors have used in the past like the Boston Marathon malware incidents.

This post will highlight the OpenDNS Security Labs analysis of the campaign and its indicators.
Key Insights

Fake BBC themed website launch using bbc-news[.]co[.]uk domain
Social media enlisted to spread disinformation to draw visitors
A 16.5x spike in normal DNS queries to the website
Website had external links to State-sponsored (Iranian) media outlet
Prominent American economist and columnist enlisted to lend credibility to disinformation
[link to labs.opendns.com]

Check out the referral list....
Anonymous Coward (OP)
User ID: 66880818
Canada
01/15/2015 01:07 PM
Report Abusive Post
Report Copyright Violation
Re: Disinformation of Charlie Hebdo: Analyzing a Fake BBC News Site
hiding
Sleeping One
User ID: 60019805
France
01/16/2015 11:51 AM
Report Abusive Post
Report Copyright Violation
Re: Disinformation of Charlie Hebdo: Analyzing a Fake BBC News Site
You may have noticed that a few media outlets have been reporting that a fake BBC website was setup to spread disinformation regarding the recent Charlie Hebdo attacks in Paris, France.On January 12, 2015 our advanced threat protection flagged the bbc-news[.]co[.]uk domain as a suspicious site. While we can’t say definitively what the motives are of the operators are, it is apparent that they are untrustworthy and potentially nefarious. The predictive classification that we used to identify and flag the site is showing the attack is very similar to former incidents that malicious actors have used in the past like the Boston Marathon malware incidents.

This post will highlight the OpenDNS Security Labs analysis of the campaign and its indicators.
Key Insights

Fake BBC themed website launch using bbc-news[.]co[.]uk domain
Social media enlisted to spread disinformation to draw visitors
A 16.5x spike in normal DNS queries to the website
Website had external links to State-sponsored (Iranian) media outlet
Prominent American economist and columnist enlisted to lend credibility to disinformation
[link to labs.opendns.com]

Check out the referral list....
 Quoting: Anonymous Coward 66880818

This is important.
I can't believe it got almost no attention on a conspiracy site such as GLP with purportedly hundreds of thousands visitors daily.

I myself found a link to it a few days ago (whether on this site or on the "other" site - not its pink "sister" site I don't remember) and noticed the to me unknown and quasi abnormal URL. I know very well BBC has its standard addresses for News so this was not normal. I just ignored the site as I had other things to worry about. Normally I would have mentioned it here or elsewhere".
Page 1
Top
Previous Page
Next Page


Related Threads





GLP