Results 1 to 2 of 2
  1. #1
    Join Date
    May 31st, 2008
    New Jersey, Turnpike exit 9. ;-)
    DNS exploit in the news
    I just saw this now, and can't find it here via search.

    In Washington Post/technology/Securityfix.

    Fortify Your Internet Security Settings Now

    The Web became a substantially more dangerous place this week, thanks largely to the publication of instructions that show cyber criminals how to exploit a pervasive, critical flaw in the Internet infrastructure.

    While Internet service providers and corporations can mitigate the danger by updating the software that powers vulnerable components of their networks, data released yesterday indicates that only about half of the world's online population is currently protected by these updates. ...

    But according to research released this month, most of those DNS servers are vulnerable to a security flaw that allows miscreants to silently alter the virtual road maps that those systems rely on to route traffic. As a result, a cyber criminal could trivially rewrite those records so that when customers of a vulnerable ISP or network provider try to visit a particular Web site, they are instead taken to a counterfeit site created by the bad guys.
    The report says that most ISPs have applied the patch already, but half of the internet population is still vulnerable.

    I can see where if enough of them get attacked, it could seriously damage e-commerce. Dox Para Research has a DNS checker button on its blog that can tell you if the server you use has been patched or not. I wondering if it might be worth putting this button on my website (if that is possible) if the problem starts getting a lot of publicity.

  2. #2
    Comfortably Numb John Powell's Avatar
    Join Date
    October 17th, 2005
    Bayou Country, LA
    I think that's the same problem that DNSstuff has a test for here. They have a free test to check your DNS servers.

  3. Newsletter Signup

+ Reply to Thread

Similar Threads

  1. Trojan Warning Exploit-ms04-028
    By superCool in forum Midnight Cafe'
    Replies: 5
    Last Post: March 23rd, 2012, 01:24 PM
  2. RoundCube Exploit
    By John Powell in forum Midnight Cafe'
    Replies: 0
    Last Post: January 8th, 2009, 09:36 AM
  3. new mass hack/exploit for WordPress
    By John Powell in forum Blogging, Mobile and Social Media
    Replies: 6
    Last Post: November 28th, 2008, 09:54 PM
  4. SQL Injection Exploit
    By John Powell in forum Programming / Datafeeds / Tools
    Replies: 6
    Last Post: April 20th, 2007, 12:49 PM
  5. Warning: Nasty Windows Exploit
    By Dynamoo in forum Midnight Cafe'
    Replies: 17
    Last Post: January 4th, 2006, 01:38 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts