Skip to: Content
Skip to: Site Navigation
Skip to: Search
Newser - Current News - Breaking Stories

« Back to the grid | Next story »

Latest Domain Name Hack Disguises Its Danger

Posted Dec 11, 07 8:48 PM CST in Technology 

(Newser) – The misdirection of “open-recursive” DNS servers, which facilitate web-surfing by translating verbal domain names into numerical IP addresses, is the new, more covert face of cyber-criminality, and could explode into a new wave of phishing attacks, IDG News reports. Hackers can use these types of DNS servers to redirect a web user to pages of their choosing, regardless of the web address they entered.

DNS server misdirection itself is not new, but attacks are now coordinated with web- or email-based malware, which changes a Windows registry setting so that an individual's computer can only visit DNS servers compromised by the criminals. With that control, they can subtly, perhaps only occasionally send a user to fake sites—such as during an online banking session—or simply hijack their entire Internet experience.
Source: PC World

0 comments | Print E-mail | Digg Seed this on Newsvine Add this link to Del.icio.us StumbleUpon

Related Newser Stories

  • 'Every Network Is at Risk' Thanks to Bug

    Aug 7, 08 8:05 AM CDT
    'Every Network Is at Risk' Thanks to Bug Security researcher Dan Kaminsky outlined what he calls the biggest Internet security hole since 1997 to a gathering of experts yesterday, and it's a lot worse than had been understood, Wired reports. “Every network is at risk,” Kaminsky said at the Black Hat conference in Las Vegas. "That's what this flaw has shown." The bug, a hole in the Domain Name Service, has wider implications than anyone realized when word of it leaked last month, Kaminksy said. More »

  • Domain Name Bug Worries Web Providers

    Jul 30, 08 9:33 AM CDT
    Domain Name Bug Worries Web Providers ISPs worldwide are racing to patch a flaw in the design of the Internet that could allow criminals to steal personal and financial details of Web users by diverting them to fake sites. The flaw resides in the procedures of the Domain Name System, which translates URLs into numerical Internet protocol. The problem underlines the dangers of the Internet's jumbled, decentralized architecture, in which no one entity can fix such a weakness, writes the New York Times.
    More »

  • Free Expression Comes to Domain Names

    Jun 24, 08 4:25 PM CDT
    Free Expression Comes to Domain Names Domain names may soon be open for anyone to create, providing companies and individuals with unprecedented freedom to carve out their own corner of the Net, the BBC reports. The Internet's biggest shakeup in decades "will allow groups, communities and business to express their identities online,” sad the head of the independent nonprofit that assigns names. More »

  • Malware Threats Skyrocketed in 2007

    Apr 8, 08 2:51 PM CDT
    Malware Threats Skyrocketed in 2007 Last year saw an explosion in malware threats that has Symantec considering a new approach to Internet security—“whitelisting” legitimate computer code rather than blacklisting known threats. Of 1.1 million threats the company has discovered in over 25 years, it uncovered almost two-thirds of them in 2007, Computerworld reports. Symantec blames the escalation on the emergence of efficient malware-creating organizations. More »

  • Google Sours on 'Domain Tasters'

    Jan 26, 08 10:23 AM CST
    Google Sours on 'Domain Tasters' Google aims to stop entrepreneurs from "domain name tasting," the AP reports. The practice exploits a 5-day grace period during which registrants can return a domain for a full refund; meantime, the buyer puts up ads and evaluates whether the site would bring in enough revenue to keep it—the equivalent of intending to return a gown after wearing it once. More »

DNS server-based phishing attacks are very effective at stealing passwords.   (shutter stock)
Phishing attacks involve the theft of personal information.   (Shutter stock)
« Prev« Prev | Next »Next » Slideshow
Our editors also recommend:

Related Threads

(1 of 2)

Tags

cybercrime domain names phishing Internet domains DNS


Loading...

Today's Most Popular

[ Stories ]

Threads

Loading...
SPONSORED NEWS ARCHIVE

Infoblox Unveils 'DNS Firewall' to Address DNS Vulnerability Concerns (Wireless News)

Nominum Says Its DNS Software Protects Over 120 Million Internet Users (Wireless News)

Authentium's SafeCentral Addresses DNS Flaw. (Entertainment Close-up)

Nominum DNS protects over 120 million Internet users.(Security News and Products) (Database and Network Journal)

ISC Acts Quickly to Shield BIND User Base (Marketwire)

New security package.(Security News and Products)(Nominum)(Brief article) (Software World)

Does The Indictment Of The Alleged Palin Email Hacker Hold Water?(Reprint) (Mondaq Business Briefing)

MIT Students Barred From Giving Hacker Speech.(Massachusetts Institute of Technology) (U.S. News & World Report)

Hacker indictment greeted with muted response.(Business) (The Virginian Pilot)

Hacker able to impersonate Palin to steal e-mail password (SouthtownStar (Chicago, IL))


Other Technology Stories