Language Selection

English French German Italian Portuguese Spanish

DNS attacks on the up

Filed under

Domain name system (DNS) poisoning attacks affect enterprise servers and cause users to be directed to malicious websites when they try to access legitimate ones.

The exploit this by directing the user to a different web IP address even though the correct domain has been typed in by the user.

Once the user is directed to a malicious site they could unwittingly download malware onto their machine and the corporate network, which could include viruses, adware, spyware or key-logging programs that can be remotely controlled by hackers.

The ISC says such attacks are spreading partly as a result of the default settings on older Windows-based servers.

Servers running NT 4.0 or versions of Windows 2000 prior to Service Pack 3 are particularly vulnerable as they don’t automatically protect companies against DNS Poisoning.

Symantec recently had to release a security patch to stop its older security appliances from letting such attacks through.


More in Tux Machines

The importance of community-oriented GPL enforcement

The Free Software Foundation and Software Freedom Conservancy have released a statement of principles on how GPL enforcement work can and should be done in a community-oriented fashion. The president of the Open Source Initiative, Allison Randal, participated as a co-author in the drafting of the principles, together with the leadership of FSF and Conservancy. The Open Source Initiative's mission centers on advocating for and supporting efforts to improve community best practices, in order to promote and protect open source (founded on the principles of free software). While the OSI's work doesn't include legal enforcement actions for the GPL or any of the family of licenses that conform to the Open Source Definition, we applaud these principles set forth by the FSF and Conservancy, clearly defining community best practices around GPL enforcement. Read more

Today in Techrights

Erle-Spider, the Ubuntu Drone with Legs Needs Your Help to Become a Reality - Video

We've talked a lot about the upcoming Ubuntu-powered drone with legs, called Erle-Spider, from the Erle Robotics team, who just demoed the device live earlier today, October 13, on Canonical's UbuntuOnAir YouTube channel (see the video below). Read more

Best Quality and Quantity of Contributions in the New Xen Project 4.6 Release

I’m pleased to announce the release of Xen Project Hypervisor 4.6. This release focused on improving code quality, security hardening, enablement of security appliances, and release cycle predictability — this is the most punctual release we have ever had. We had a significant amount of contributions from cloud providers, software vendors, hardware vendors, academic researchers and individuals to help with this release. We continue to strive to make Xen Project Hypervisor the most secure open source hypervisor to match the security challenges in cloud computing, and for embedded and IoT use-cases. We are also continuing to improve upon the performance and scalability for our users, and aim to continuously bring many new features to our users in a timely manor. Read more