Attack code released for new DNS attack - Network World

Comments (10)

1. • jansie

   this is scary stuff. so this means nothing is really safe from hacking. sheesh, what to do?

   • (0 Kudos received)
2. • mattaw101

   scary stuff, I think I shall be scared of updates for the next few months :P

   • (0 Kudos received)
3. • kre8designs

   Nothing is ever safe. My cousin works for a company that hacks their clients systems to disclose vulnerability. Then builds a patch for it. One of their biggest clients is the US Military. Let's just say, business is good.

   • (0 Kudos received)
4. • SilentJay74

   @jansie
   The bad part about this, a security company called Matasano inadvertently released details about the flaw in a blog post. They took it down as soon as the realized what they did. It was to late thought, the flaw detail had been scraped and posted else where. So now hackers had enough time to develop a tool to poison DNS.
   Dan Kaminsky, the guy that found the flaw had only given security companies and OS makers details on the flaw on the condition not to release anything until after the black hat security conference in August which would have given everyone at least 30 days. That would have given OS makers and ISP's enough time to develop a patch and apply it. However, Matasano dropped the ball and then they had only 13 days. Now OS makers and ISP's are scrambling like a bunch of Monkey's screwing Footballs to get this fixed.

   • (0 Kudos received)
5. • jansie

   @SilentJay74 so where's this leading? a total wipe out of the web? this is possible, is it not? or those really sweet domain names i recently purchased can simply be stolen from me.

   this whole thing looks like part of a bigger scheme. now's the time for the new internet to come to life, if that's even possible.

   and go matasano! brilliant strategy. they should be rewarded for their efforts.

   • (0 Kudos received)
6. • SilentJay74

   @jansie Not really a wipe out more like a high jack.

   • (0 Kudos received)
7. • jansie

   @SilentJay74 we need to do something dude! i dunno, maybe create a 'marines against internet hijacking' group or something. recruit some mean outcasts (you can do that), and send them to all the geeks hidden in their basements trying to take over the world. kick ass! i'll submit the action to mixx. have to do something.

   hey, would i score a free spork if i join?

   • (0 Kudos received)
8. • SilentJay74

   @jansie
   You had to bring up the Titanium spork didn't you?

   • (0 Kudos received)
9. • jansie

   @SilentJay74 aha! knew i'd get your spider senses tingling by mentioning the spork. and yes, of course it has to be the titanium spork.

   • (0 Kudos received)
10. • PatrickTulskie

    Yeah. This is really bad. Since so few DNS servers are patched right now, there could theoretically be a massive doomsday event where the biggest sites on the internet are unreachable.

    Never been more afraid of an exploit. Ever.

    Put it in perspective... you eat some germs and get sick right? Maybe you pass this on to someone else but it's pretty limited to who you touch or get your snot on.

    Now imagine you get an amnesia that spreads through eye sight. You look at someone and boom, they have amnesia. It would be maybe hours till continents are infected. You come into contact with way fewer people than you look at in a given day.

    With a google adsense account and a few scripts you could redirect a lot of the internet into oblivion before Monday morning.

    • (0 Kudos received)

Add Your Comment Attack code released for new DNS attack - Network World

Login now to post your comment.