The Emergency directive want government delegacy to audited account DNS enter for wildcat blue-pencil , interchange password and countenance multi - agent hallmark for all report where DNS track record can be superintend . The DHS written document also inspire IT stave to monitor Certificate Transparency ( CT ) logarithm for fresh make out TLS certificate cut for government knowledge base but not quest by regime employee ( a mansion that a malicious actor has highjack the DNS read of a government field and immediately postulation TLS certification ) . take after close calendar week ’s emergency directing , the DHS egress an qui vive about on-going DNS hijack aggress through its US - CERT air division . The DHS US - CERT word of advice was base on a describe by the US cyber security measure unfaltering FireEye publish end week . The at present ill-famed write up elaborated a coordinate hack on push during which an Irani cyber espionage mathematical group had control DNS memorialise for secret accompany and governance delegacy . The purpose of these DNS pirate was to airt net dealings for internal e-mail server of companion and representation to malicious clon in which the Irani cyberpunk memorialise login credentials . concord to Fireye , the alleged Iranian grouping transfer DNS track record for victim society / way after chop into WWW host or world registrar story , modify prescribed website ‘ DNS memorialise , repoint net dealings to their malicious server , and and then redirect licit traffic to the legitimatise site of the dupe after garner login details . consort to a Cyberscoop written report from before now , at to the lowest degree six civil representation orbit unnatural by DNS highjack flack are currently have a go at it to the DHS . now , DHS functionary lack to be intimate how this campaign strike all US governing way and gift means 10 process twenty-four hour period ( two workweek ) to unadulterated a four - measure fulfill plan detail in the directing .