• Latest
  • All
  • How To
Malware

Hackers Now Using DNS Records to Sneak in Malware

July 18, 2025
AWS

AWS Billing Bug Sent Customers Fake Bills in the Billions

July 17, 2026
Apple Music

Apple Raises Apple Music and Apple One Subscription Prices

July 17, 2026
Kimi K3

Kimi K3 Launches as China’s Largest Open AI Model to Rival OpenAI and Anthropic

July 17, 2026
God of War

God of War TV Series Delayed After Lead Role Suffers Injury

July 17, 2026
DHgate Tablet Cases deals
How to Download and Verify Your NTSA eLogbook

NTSA Offline: License, Registration and Other Online Services Paused Over the Weekend

July 17, 2026
Uber Buys Out Glovo, Its Biggest Rival in Kenya’s Delivery Market

Uber Buys Out Glovo, Its Biggest Rival in Kenya’s Delivery Market

July 17, 2026
Airtel Africa

Airtel Loses Tariff Fight as CAK Clears Safaricom’s 10-Cent Pricing War

July 17, 2026
Unsolved Hidden Mystery Games Is Worth Playing If You Can Handle the Wait

Unsolved Hidden Mystery Games Is Worth Playing If You Can Handle the Wait

July 17, 2026
Digital Lending

How a Digital Lending Loophole Turned a KES 300K Loan Into a KES 500K Payment

July 16, 2026
Stablecoins Are Quietly Changing How Kenyans Receive, Save and Spend US Dollars

Stablecoins Are Quietly Changing How Kenyans Receive, Save and Spend US Dollars

July 16, 2026
OnePlus 13

OnePlus Winds Down Operations in US and Europe

July 16, 2026
DeepSeek

DeepSeek Eyes 2027 IPO After Raising Its Valuation Target to $71 Billion

July 15, 2026
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
No Result
View All Result

Hackers Now Using DNS Records to Sneak in Malware

Naftary Thitu by Naftary Thitu
July 18, 2025
in News
Reading Time: 3 mins read
306
0
Malware

Hackers are increasingly turning to one of the internet’s most trusted and overlooked systems to deliver malware: DNS, the Domain Name System.

Researchers at DomainTools recently discovered that attackers are using DNS TXT records to hide malicious code, taking advantage of this often-overlooked channel to bypass traditional security measures like antivirus software, email filters, and firewalls.

The malware involved, including a strain called Joke Screenmate, is encoded in such a way that it can be quietly smuggled into a network without raising any red flags.

How the Attack Works

The malware is first converted from binary into hexadecimal, essentially translating the file into a string of numbers and letters. This hex code is then broken into hundreds of small chunks.

Each part is placed in the TXT record of a separate subdomain under a domain like whitetreecollective[.]com.

.

Once an attacker gains even limited access to a network, they can send seemingly normal DNS queries to pull these chunks back one by one. The chunks are then reassembled and decoded back into a functional piece of malware, all without triggering common security alerts.

The brilliance of this approach is its use of a commonly trusted and poorly monitored protocol. The situation is worsened by the growing adoption of encrypted DNS protocols such as DNS-over-HTTPS (DoH) and DNS-over-TLS (DoT), which protect user privacy by encrypting DNS requests.

However, this same encryption also shields malicious queries from security tools, making detection even harder unless the organization manages its own DNS resolvers with deep packet inspection capabilities.

Ian Campbell, senior security operations engineer at DomainTools, explained that even well-equipped organizations struggle to identify malicious DNS activity. Since the content of DNS requests is often hidden, many threats go undetected.

In addition to malware, researchers also discovered that attackers are using DNS TXT records to store harmful prompt injection text, crafted to manipulate AI chatbots and language models into performing unauthorized or unintended tasks.

How to Defend Yourself Against DNS-Based Attacks

To stay ahead of these advanced tactics, security teams must rethink their approach to DNS. Here are a few steps organizations can take:

  • Monitor DNS traffic regularly, especially for unusual subdomain lookups or large volumes of TXT record requests.
  • Use internal DNS resolvers with logging and inspection capabilities to retain visibility into queries.
  • Deploy DNS firewalls or security tools that can detect and block suspicious patterns, like unusually long TXT records.
  • Limit external DNS access by restricting outbound DNS queries to known, trusted resolvers.
  • Educate teams on emerging threats, including DNS-based malware delivery and AI prompt injection exploits.
Tags: CyberattacksCybersecurityMalware
SendShare169Tweet106
Naftary Thitu

Naftary Thitu

Tech enthusiast and ICT guru by trade, I simplify digital trends and gadgets into articles everyone can enjoy. Email: [email protected]

Related Posts

AI

Kenya’s AI Policy, As the Government Sees It

July 7, 2026
Budget Day: The Other Tech Items Worth Watching

Budget Day: The Other Tech Items Worth Watching

June 16, 2026
KRA Customs

KRA Built One of Africa’s Most Advanced Customs Systems, but Cracks Are Starting to Show

May 26, 2026
KRA

KRA Moves to Multi-Vendor Cybersecurity Model for Customs Infrastructure

May 25, 2026
Equity Bank 98% of Transactions Go Digital as Branches Pivot to Relationship Centers and high value client management

Equity Bank Confirms Customer Lost Alleged KES 300,000 After Email Compromise

July 13, 2026
GitHub

GitHub Breach Exposes 3,800 Internal Repositories After Malicious VS Code Extension Attack

May 20, 2026

Latest

AWS

AWS Billing Bug Sent Customers Fake Bills in the Billions

July 17, 2026
Apple Music

Apple Raises Apple Music and Apple One Subscription Prices

July 17, 2026
Kimi K3

Kimi K3 Launches as China’s Largest Open AI Model to Rival OpenAI and Anthropic

July 17, 2026
God of War

God of War TV Series Delayed After Lead Role Suffers Injury

July 17, 2026
How to Download and Verify Your NTSA eLogbook

NTSA Offline: License, Registration and Other Online Services Paused Over the Weekend

July 17, 2026
Uber Buys Out Glovo, Its Biggest Rival in Kenya’s Delivery Market

Uber Buys Out Glovo, Its Biggest Rival in Kenya’s Delivery Market

July 17, 2026

Best devices

Best Infinix Phones of 2025

Best Infinix Phones of 2025: Budget Prices With Premium Features

December 31, 2025

The Best Infinix Accessories Worth Buying in 2025

November 26, 2025

Best Budget Wireless Earbuds To Buy in Kenya (2025)

October 8, 2025

Samsung Galaxy A36 5G vs Samsung Galaxy A56 5G: Comparison Review

August 29, 2025

Infinix Hot 60 Pro+ vs Infinix Hot 60i: Comparison Review

August 22, 2025

Best Budget Smartwatches To Buy in Kenya 2025

February 13, 2025

Techweez is where tomorrow’s tech stories break today, thanks to intelligent analysis, real-world insight, and visionary storytelling.

Follow Us

Editorials

Unsolved Hidden Mystery Games Is Worth Playing If You Can Handle the Wait

Period Tracker: An App That Prioritizes Simplicity and Privacy

Inside Bumble, the Dating App Where Women Call the Shots

Locket: Photo Sharing App With No Feed, No Likes, and No Algorithms

Couple Joy: A Long-Distance Dating App That Builds Intimacy in Small Daily Acts

Airbuds: The App That Turns Your Music Into a Social Feed

More News

Airtel Loses Tariff Fight as CAK Clears Safaricom’s 10-Cent Pricing War

Unsolved Hidden Mystery Games Is Worth Playing If You Can Handle the Wait

How a Digital Lending Loophole Turned a KES 300K Loan Into a KES 500K Payment

Stablecoins Are Quietly Changing How Kenyans Receive, Save and Spend US Dollars

OnePlus Winds Down Operations in US and Europe

DeepSeek Eyes 2027 IPO After Raising Its Valuation Target to $71 Billion

  • Terms Of Use
  • Techweez Brand
  • Privacy & Policy
  • Contact Us

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!

Hey there! Just a heads-up: we're big fans of cookies - both the digital and edible kind! 🍪 We use our cookies and some from third parties to ensure your browsing experience on our site is smooth sailing and secure.

 

But wait, there's more! We also use cookies to gather stats and insights on how you navigate our site. It's like getting a behind-the-scenes peek at your digital adventures!

 

Don't worry, you're in control. You can adjust your cookie settings anytime to suit your preferences. Feeling curious? Dive into our Privacy Policy for all the juicy details. Happy browsing! 🚀

Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
No Result
View All Result
  • News
  • Reviews
  • Features
  • Editorial
  • Automotive
  • Entertainment

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.