Showing posts with label DNS. Show all posts
Showing posts with label DNS. Show all posts
Thursday, April 3, 2014
In February - 5 Million Home Routers used in DNS Amplification Attack
According to the article:-
24 million home routers have open DNS proxies which potentially expose ISPs to DNS-based DDoS attacks.
Using home routers helps mask the attack target making it harder for ISPs to trace the ultimate recipient of the waves of amplified traffic.
"Even if ISPs employ best practices to protect their networks, they can still become victims, thanks to the inherent vulnerability in open DNS proxies".
The link below has more information:-
http://betanews.com/2014/04/02/millions-of-home-routers-expose-isps-to-ddos-attacks/
Tuesday, March 25, 2014
Secure Domain Foundation (SDF) - Formed Yesterday.
It is a non-profit organization whose goal is to facilitate information sharing among Internet domain registrars and registries
Another small but important additional layer of Security. Hopefully, this should help reducing a few malicious players.
According to the article:-
The SDF will analyze and report the email and IP addresses of bad actors, making it easier for Internet domain registrars and registries to uniformly block them, Davis says. The organization also has developed methods for recognizing potentially malicious domains and measuring the reputation of applicants to help registrars screen their applicants.
"The SDF provides an entirely free service that not only validates the contact registration data provided, but also lets the registrar and registry know if we have seen that data used previously in relation to cyber crime," Ritchie says.
The links below has more information
http://www.darkreading.com/vulnerability/secure-domain-foundation-launches-will-s/240166802
Another small but important additional layer of Security. Hopefully, this should help reducing a few malicious players.
According to the article:-
The SDF will analyze and report the email and IP addresses of bad actors, making it easier for Internet domain registrars and registries to uniformly block them, Davis says. The organization also has developed methods for recognizing potentially malicious domains and measuring the reputation of applicants to help registrars screen their applicants.
"The SDF provides an entirely free service that not only validates the contact registration data provided, but also lets the registrar and registry know if we have seen that data used previously in relation to cyber crime," Ritchie says.
The links below has more information
http://www.darkreading.com/vulnerability/secure-domain-foundation-launches-will-s/240166802
Tuesday, March 18, 2014
I was not aware of this - Google DNS was hijacked for 22 minutes on March 16
It does not seem to be Google's fault but the ISP
According to the article:-
Google's Public DNS servers are used for "130 billion DNS queries on average (peaking at 150 billion) from more than 70 million unique IP addresses each day."
Network security company BGPmon reported that Google's Public DNS server, 8.8.8.8, was hijacked for Internet users in Brazil and Venezuela for 22 minutes
It required that an important router at a major South American ISP be under the control of an attacker
The links below has more information:
http://www.zdnet.com/google-free-public-dns-services-were-briefly-corrupted-7000027401
Subscribe to:
Posts (Atom)