Sign up for our weekly newsletter!
REGISTER NOW
Comments
Newest First | Oldest First | Threaded View
batye
batye
2/3/2019 10:11:37 PM
User Rank
Guardian
Re: This is worrisome
@Michelle  I hope they smarten up and try to do it better way in the future- taking very pro-active aproach... 

50%
50%
Michelle
Michelle
1/31/2019 9:57:40 PM
User Rank
Guardian
Re: This is worrisome
I hope the early warning helps prevent further problems. 

50%
50%
Joe Stanganelli
Joe Stanganelli
1/31/2019 6:13:19 PM
User Rank
Author
Re: This is worrisome
@Taimoor: What makes it worse is lackluster customer service. I've had benign DNS issues and other issues with my host services in the past that have needed resolution, and it was like pulling teeth to get them to not only get them resolved, but to get them to recognize an email-address change.

50%
50%
TaimoorZubair
TaimoorZubair
1/30/2019 11:57:03 PM
User Rank
Guardian
Detrimental
"With the change in DNS records, the attacker can obtain valid encryption certificates for an organization's domain names. This allows the redirected traffic to be decrypted, exposing any user-submitted data. Since the certificate is valid for the domain, end users receive no error warnings."

That does seem like a big threat especially if the user is unaware of it. It can prove to be detrimental if personal information such as credit card numbers are being submitted in the web form.

50%
50%
TaimoorZubair
TaimoorZubair
1/30/2019 11:44:58 PM
User Rank
Guardian
Re: This is worrisome
"I have heard about the potentials for DNS tampering over the years. Is common?"

@Michelle: I think DNS tampering is one of the oldest forms of attacks. It has been prevalent since the early days of the internet. I am not sure about how deadly it is though and the history of damages it has caused.

50%
50%
Michelle
Michelle
1/30/2019 4:50:11 PM
User Rank
Guardian
Re: This is worrisome
I have heard about the potentials for DNS tampering over the years. Is common?

50%
50%
LarryLoeb
LarryLoeb
1/28/2019 9:40:33 AM
User Rank
Author
Re: This is worrisome
@gijsson

My guess is that they know the full detais, but don't want to make them public so that the threat actors know what it is they know and change things.

50%
50%
gijsson
gijsson
1/28/2019 6:19:52 AM
User Rank
Keeper
Re: This is worrisome
Thanks Ariella for the link share. Am still looking for details. Will share if I find something.

50%
50%
Ariella
Ariella
1/26/2019 6:51:00 PM
User Rank
Protector
Re: This is worrisome
Good question. I couldn't find anything even in reports within the last day, like this one: https://delegatenews.com/dhs-multiple-us-gov-domains-hit-in-serious-dns-hijacking-wave/

50%
50%
gijsson
gijsson
1/25/2019 10:16:38 PM
User Rank
Keeper
This is worrisome
Any updates on the extent of damage? As in how many DNS/ email servers were compromised?

50%
50%


Latest Articles
A new report by the US Government Accountability Office could be the catalyst for meaningful change on the Internet privacy front.
The kinds of threats an organization encounters are changing as the defenses that are brought to bear upon them change.
Russian threat actors were the most prolific last years – and were eight times faster at 'breaking out' than their nearest rival.
Cloud projects are big. Huge. So it's not perpetuating FUD to point out that cloud transformation still bears security and data-stewardship risks. But what appears too big a challenge for mere man might be no match for machine.
Zero-day vulnerabilities are serious, and on the rise. And IT-security teams make the problem worse when they fail to respond, or respond poorly, to responsible vulnerability disclosures.
Flash Poll
Video
In a wide-ranging interview, Cisco security boss Gee Rittenhouse talks about how machine learning, AI, blockchain and other emerging technologies ...
CloudPassage's new technology, called Container Secure, involves a five-step process to ensure seamless security in container deployments from the ...
You can't so much as go to a coffee shop today without hearing the word 'blockchain.' Hearing about a useful blockchain is less common, but ...
Last year, 60 million companies changed owners worldwide. That turnover makes it incredibly difficult to avoid doing business with entities (e.g., ...
Keith Furst of Data Derivatives interviews Daniel Wagner, author of a new book, Virtual Terror: 21st Century Cyber Warfare. They discuss the ways ...
All Videos
Sponsored Video
Sage Wagner, senior security pre-sales engineer with RiskSense, provides a demo of the company's latest technology 'RiskSense Solution,' a ...
Janus Technologies is launching a line of products that protect against the many threats to enterprises' sensitive data. David Schultz, vice ...
This new video will inspire companies to reimagine their business for success in a world where connectivity is more than a commodity. Sponsored Video
All Videos
Radio Shows
like us on facebook
Security Now
About Us     Contact Us     Help     Register     Events     Supporting Partners     Twitter     Facebook     RSS
Copyright © 2019 Light Reading - an Informa business, trading within KNect365 US, Inc. All rights reserved. Privacy Policy | Cookie Policy | Terms of Use
in partnership with