Hackers’ Million-Dollar Domain Investments Boost Cybercrime Efficiency

Criminals Pour Millions into Malicious Domains, Reaping Significant Rewards In the constantly evolving realm of cybercrime, hackers are making substantial investments in malicious domains, and the returns are proving to be substantial. To conduct their illegal operations—such as managing command and control (C2) servers, distributing malware, or executing other malicious activities—cybercriminals need domain names. While many use Domain Generation Algorithms (DGAs) to automate the creation of these domains, registering them with a domain registrar is essential for their functionality. Recent insights from Infoblox Threat Intel reveal that a hacker group called Revolver Rabbit has registered over 500,000 domains using Registered Domain Generation Algorithms (RDGAs). This extensive registration represents an investment of more than one million dollars. A Costly but Profitable Strategy Revolver Rabbit has utilized RDGAs to set up both C2 and decoy domains specifically for the XLoader infostea…