Results 1 to 2 of 2
July 25th, 2008, 11:14 AM #1
DNS exploit in the news
- Join Date
- June 1st, 2008
- New Jersey, Turnpike exit 9. ;-)
I just saw this now, and can't find it here via search.
In Washington Post/technology/Securityfix.
Fortify Your Internet Security Settings Now
The Web became a substantially more dangerous place this week, thanks largely to the publication of instructions that show cyber criminals how to exploit a pervasive, critical flaw in the Internet infrastructure.
While Internet service providers and corporations can mitigate the danger by updating the software that powers vulnerable components of their networks, data released yesterday indicates that only about half of the world's online population is currently protected by these updates. ...
But according to research released this month, most of those DNS servers are vulnerable to a security flaw that allows miscreants to silently alter the virtual road maps that those systems rely on to route traffic. As a result, a cyber criminal could trivially rewrite those records so that when customers of a vulnerable ISP or network provider try to visit a particular Web site, they are instead taken to a counterfeit site created by the bad guys.
I can see where if enough of them get attacked, it could seriously damage e-commerce. Dox Para Research has a DNS checker button on its blog that can tell you if the server you use has been patched or not. I wondering if it might be worth putting this button on my website (if that is possible) if the problem starts getting a lot of publicity.
July 25th, 2008, 12:03 PM #2
By superCool in forum Midnight Cafe'Replies: 5Last Post: March 23rd, 2012, 02:24 PM
By John Powell in forum Midnight Cafe'Replies: 0Last Post: January 8th, 2009, 10:36 AM
By John Powell in forum Blogging, Mobile and Social MediaReplies: 6Last Post: November 28th, 2008, 10:54 PM
By John Powell in forum Programming / Datafeeds / ToolsReplies: 6Last Post: April 20th, 2007, 01:49 PM
By Dynamoo in forum Midnight Cafe'Replies: 17Last Post: January 4th, 2006, 02:38 AM