Last week we learned that Microsoft managed to disrupt a major botnet powered by the infamous ZeuS Trojan. However, it turns out that they didn’t sinkhole all the command and control (C&C) servers, as three of them escaped the long arm of the Redmond company.
FireEye researchers analyzed the botnet t... [read more >>] Internet Systems Consortium (ISC), the maintainer of BIND, advises that a critical vulnerability allows attackers to perform denial of service attacks by sending malformed dynamic update messages to DNS servers using the software. Administrators are urged to deploy patches for their operating system immedia... [read more >>] A new type of attack launched from a single machine with limited hardware resources and bandwidth can cripple many of the webservers on the Internet today. Instead of flooding the server with more packets than it can handle, this new denial of service condition implies sending only a couple of hundreds of p... [read more >>] According to the 2008 DNS Survey, commissioned by network services appliances vendor Infoblox, while some improvements are noticeable, compared to 2007, millions of publicly available DNS servers still allow open recursion, which makes them vulnerable to DoS and cache poisoning attacks.The tests were carrie... [read more >>] Dan Kaminsky is the IOActive specialist whose speech was the most anticipated at this year's Black Hat hacker conference held in Las Vegas. This happened because, one month ago, Kaminsky announced that he had discovered a DNS flaw that employed completely new methods to steal data and affect users'... [read more >>] |