Microsoft seeks to subvert Russian hackers in the courtroom
Microsoft is attempting to take out Russian hackers linked to 2016's election hacking by turning from cyberspace to the courtroom.
Microsoft is striking out to hinder the hacking efforts of Fancy Bear, a group that is believed to be linked to the Russian government, and who U.S. intelligence agencies say is behind attacks on the Democratic National Committee and the Hillary Clinton campaign in the 2016 U.S. elections. As reported by The Daily Beast, Microsoft is going about its efforts in a unique way: taking legal control of Fancy Bear's command-and-control domains.
The Daily Beast reports:
Since the lawsuit was launched last year, Microsoft has managed to seize more than 70 command-and-control domains from Fancy Bear, the report explains. Any time a command-and-control server attempts to connect to a seized domain, it will instead be directed to a Microsoft-controlled server.
The basis of the court filing lies in the names Fancy Bear chooses for its domains, which have historically contained some reference to Microsoft or its products. Some examples cited by the report include "livemicrosoft[.]net" or "rsshotmail[.]com."
Microsoft is actively continuing its efforts to identify and cut off Fancy Bear's access to new domains as they are created. The efforts are already having an effect, as Fancy Bear has started switching to names that are a little more general. Microsoft is planning to ask for a final judgment from the judge presiding over the case on Friday. If a permanent injunction is granted, Microsoft will gain ownership over domains that it has seized.
Get the Windows Central Newsletter
All the latest news, reviews, and guides for Windows and Xbox diehards.
Dan Thorp-Lancaster is the former Editor-in-Chief of Windows Central. He began working with Windows Central, Android Central, and iMore as a news writer in 2014 and is obsessed with tech of all sorts. You can follow Dan on Twitter @DthorpL and Instagram @heyitsdtl.