New DNS Exploit Now In the Wild and Having a Blast

July 28, 2008 at 12:00 am PT

About two weeks ago, we covered the release of a DNS security fix meant to patch a vulnerability in the system that matches domain names with IP addresses. The flaw had been discovered by security researcher Dan Kaminsky some months earlier but, at the time, details on the exploit were being kept secret. That information has since leaked thanks to an accidental blog post by someone at Matasano Security. Fast forward four days, and hackers, enterprising little children that they are, have released an exploit aimed squarely at the vulnerability.

This would be less of an issue if the widely released patch from two weeks ago had been fully deployed, but a number of companies or ISPs don’t seem to have gotten the memo.

Read the rest of this post

Tagged with: Ars Technica, Dan Kaminsky, DNS, hackers, IP address, Joel Hruska, Matasano Security

comments so far. Add yours.

Allen Cross

Simply enable Open DNS. Problem solved.

https://www.opendns.com/start

I wish all script kiddie tricks were so easily avoided.

About Voices

This is a section of the AllThingsD Web site featuring posts that have been curated from around the Web: pieces we’ve read, discussions we’ve followed, stuff we like. Five posts are included here each weekday, but only the headline and the first two sentences. We link to the original site for the rest. The section is explicitly labeled, so it’s clear that content comes “from other Web sites.”

We also solicit original full-length posts and accept some unsolicited submissions. Voices is edited by Beth Callaghan.

The Internet Hasn’t Killed the Radio Star: Clear Channel CEO Bob Pittman’s Full Dive Into Media Interview

Hulu CEO Jason Kilar Is Still Standing: The Full Dive Into Media Interview (Video)

Neil Young, the Donkey and Digital Music: The Full Dive Into Media Interview (Video)

Twitter CEO Dick Costolo: The Full Dive Into Media Interview (Video)

A Super Social Bowl

Coliloquy Steams Up Interactive E-Books (Video)

Khush Tries Teaching the World to Songify Live (Video)

Vevo’s Rio Caraeff Profits From Ubiquity (Video)

News Corp.’s Carey: Hacking Scandal Made for a Difficult Year (Video)

Legendary Entertainment’s Thomas Tull on Making Movies and Connecting With Fans (Video)

Salar Kamangar: It’s Time to Channelize YouTube (Video)

ESPN’s John Skipper Loves Every Platform — As Long As He Gets Paid (Video)

News Corp.’s Chase Carey Says Phone Hacking Doesn’t Indicate a Culture Problem

Vevo CEO Rio Caraeff: We Made $150 Million Last Year

Coliloquy’s Active Publishing Platform Lets Readers Create Designer Heroines (Demo)

WMG Chairman Edgar Bronfman Jr. on Apple, Spotify and the Fate of EMI (Video)

Legendary’s Thomas Tull Says Having Superheroes Isn’t Enough

YouTube’s Salar Kamangar on Building a Video Channel Ecosystem

ESPN’s John Skipper on Digital Distribution: “We Take the Dollar and We Take the Dime, as Well”

The New Yorker’s David Remnick Moves Beyond the Magazine (Video)

Martha Stewart Makes Her Home on the Internet (Video)

An Exit Interview With Warner Music Group Chairman Edgar Bronfman Jr.

Neil Young’s Music Rescue Mission (Video)

Viacom CEO Philippe Dauman on YouTube, SOPA and Breaking the Cable Bundle (Video)

The New Yorker’s David Remnick: Paper Magazines Are “Pretty Good Technology”

New DNS Exploit Now In the Wild and Having a Blast

comments so far. Add yours.

About Voices

News Subscribe to this section's RSS feed

Reviews Subscribe to this section's RSS feed

Mobile Subscribe to this section's RSS feed

Media Subscribe to this section's RSS feed

Enterprise Subscribe to this section's RSS feed

Commerce Subscribe to this section's RSS feed

Voices Subscribe to this section's RSS feed

Conferences Subscribe to this section's RSS feed

AllThingsD by Writer