Previous
Attack code released for Kaminsky DNS flaw
News Attack code has been released for a DNS flaw discovered by security researcher Dan Kaminsky. This exploit targets a fairly ubiquitous flaw in DNS implementations which allows the insertion of malicious DNS records into the cache of the target...
[July 24, 2008, 15:39]
DNS servers 'vulnerable to attack'
Talkback DNS servers 'vulnerable to attack' Get over yourself! DNS unsafe! DNS poisoning, use to be an issue and use to be reported along with the virus du jor but, the problem was fixed and that is why we don't hear about DNS poisoning anymore.
[October 26, 2005, 14:32]
DNS servers 'vulnerable to attack'
Talkback Grumpy, you forget that plenty of admins out there don't get passed behind the Next, Next, Finish install because that was how what they bought got sold. Sure, that leaves plenty of room for all sorts of problems but until you figure out to make it...
[October 27, 2005, 23:10]
DNS servers 'vulnerable to attack'
News Many DNS servers are wrongly configured or running out-of-date software, leaving them vulnerable to malicious attacks, according to a survey published on Monday. The Measurement Factory surveyed 1.3 million DNS servers, and found that more than...
[October 25, 2005, 17:55]
Half of DNS servers vulnerable to attack
News The security of DNS continues to be an issue for network administrators, despite the availability of more secure DNS servers such as BIND 9, according to a survey released on Monday by network appliance company, Infoblox.
[November 20, 2007, 12:37]
Researcher attempts to unravel Kaminsky DNS flaw
News A security researcher has come up with an attack method he believes could be used to exploit the DNS flaw that was recently patched in a co-ordinated, multi-vendor effort. Security researcher Dan McPherson of Arbor Networks said in a blog post that...
[July 22, 2008, 17:43]
New shield repelled internet backbone attack
News The distributed denial-of-service attack on the Domain Name System (DNS) proved the effectiveness of the Anycast load-balancing system, the Internet Corporation for Assigned Names and Numbers (ICANN) said in a document published on Thursday.
[March 12, 2007, 8:24]
Detection and Prevention of DNS Query PTR Record-Based Distributed Denial-of-Service Attack
White Papers The syslog messages of the topdomain DNS servers in Kumamoto University were statistically investigated when having receiving a large amount of DNS query packets like a Distributed Denial-of-Service (DDoS) attack.
[June 24, 2009, 16:02]
Kaminsky reveals details and extent of DNS flaw
News In a presentation given at the Black Hat security conference in Las Vegas on Wednesday, Kaminsky gave details of how a successful DNS cache poisoning attack could be launched by taking advantage of the flaw.
[August 7, 2008, 14:46]
Al-Jazeera suffers DoS attack
News The Web sites of Al-Jazeera have been taken offline, in what has been confirmed by the Qatar-based media organisation as a distributed denial of service (DDoS) attack against the company's Domain Name Servers (DNS).
[March 27, 2003, 14:09]
Dynamic Pharming Attacks and Locked Same-Origin Policies for Web Browsers
White Papers Dynamic pharming works by hijacking DNS and sending the victim's browser malicious Javascript, which then exploits DNS rebinding vulnerabilities and the name-based same-origin policy to hijack a legitimate session after authentication has taken...
[November 18, 2008, 0:00]
Internet backbone suffers suspected attack
News The attack appears to have focused on the Domain Name System (DNS), which maps text-based domain names, such as "ZDNet.co.uk", to the actual numeric IP addresses of servers connected to the internet, and vice versa.
[February 7, 2007, 13:31]
Key Internet server moved amid security concerns
News That's precisely what administrators did during the recent attack to stop the flood of data from reaching the DNS root servers. But VeriSign, which runs two of the Net's 13 domain name service (DNS) root servers, said Thursday that the timing of...
[November 11, 2002, 7:39]
Key Internet server moved for security
News That's precisely what administrators did during the recent attack to stop the flood of data from reaching the DNS root servers. But VeriSign, which runs two of the Net's 13 domain name service (DNS) root servers, said Thursday that the timing of...
[November 8, 2002, 7:42]
First attacks on DNS flaws reported
News The nodes of the DNS are nameservers and, if one of those is left unpatched, the new attack code could fool the server into redirecting user requests to phishing sites or other malware-hosting sites. The existence of the Domain Name System (DNS...
[July 28, 2008, 13:37]
Sans Institute warns of cookie-stealing threat
News According to Perry, who also publicised the vulnerability, CookieMonster is a man-in-the-middle attack that works by obtaining DNS responses and caching them. A number of attack vectors could be used by hackers, Perry warned, including Dan Kaminsky...
[September 12, 2008, 15:50]
DNS creator: It's time to add security
News The DNS author said people had used transaction identifiers, which were not intended as a security mechanism, to protect against attack. Following the publication of a fundamental flaw in the Domain Name System (DNS) by security researcher Dan...
[August 12, 2008, 11:57]
Linux worm creating P2P attack network
News While the rogue peer-to-peer network of compromised servers is currently being created, it has already been used to attack the DNS servers of a major Internet service provider, according to a statement posted on the Internet Storm Center, a Web...
[September 16, 2002, 8:09]
DNS recursion leads to nastier DoS attacks
News As a result, the DNS server, rather than the bot, makes the direct attack on the victim. While it is possible to stop a bot-delivered DDoS attack by blocking the bots' IP addresses, blocking queries from DNS servers would prove more difficult...
[March 17, 2006, 9:05]
New Trojan appears to attack VeriSign
News Sophos's revelation coincides with unconfirmed reports from a source within the technical ranks of one Australia's major ISPs of a spike in support calls from customers whose DNS server settings had been tampered with, in what appears to be an...
[October 2, 2003, 14:50]
