ICS-FORTH

State-sponsored hackers have breached ICS-Forth, the organization that manages Greece's top-level domain country codes of .gr and .el.

The hackers behind the breach were the same group detailed in a Cisco Talos report, which the company named Sea Turtle.

The group uses a relatively novel approach to hacking targets.

Instead of targeting victims directly, they breach or gain access to accounts at domain registrars and managed DNS providers where they make modifications to a company's DNS settings.

Unfortunately, this time around, the Talos team doesn't have any details of what the hackers did on ICS-Forth's network after they gained access to its systems.

Source: https://www.zdnet.com/article/hackers-breached-greeces-top-level-domain-registrar/

"id": "ICS11427323",
"linkid": "icsforth",
"type": "Breach",
"date": "07/2019",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"