Aug 7, 2008 : Kaminsky Explains DNS Attacks
📅 - IOActive (ioactive.com) director of penetration testing Dan Kaminsky has publicly commented on a domain name service flaw he discovered July that makes just about everything on the Internet vulnerable because most online actions involve a DNS request.
While technical details were leaked in late July, Kaminsky addressed a packed audience at Black Hat 2008 in Las Vegas to explain why hackers exploit this DNS weakness.
According to reports from Cnet News (news.cnet.com), Kaminsky said security analysts had previously considered it too difficult to infect DNS records. The process is like a race between a good guy and bad guy vying for a secret number transaction ID. "You can get there first," he told Cnet, "but you can't cross finish line unless you have the secret number."
Before the patch, he said, the bad guy had a 1 in 65,000 chance of winning the race because the ID is based partly on the port number used; now, with the patch, chances are lowered to 1 in more than two billion. Kaminsky said that hackers have much to gain from exploiting DNS, which is deeply embedded in our lives according to Cnet. There are three distinct periods of computer hacking Kaminsky said. The first was attacking servers like FTP and Telnet; the second was browsers including Javascript and ActiveX; the third age is about to begin, where attacking everything will be possible.
Kaminsky has been urging IT workers to implement patches to protect this potentially dangerous loophole, noting that only roughly 85 percent of Fortune 500 companies have patched their networks, almost a month after the flaw was initially found.
While technical details were leaked in late July, Kaminsky addressed a packed audience at Black Hat 2008 in Las Vegas to explain why hackers exploit this DNS weakness.
According to reports from Cnet News (news.cnet.com), Kaminsky said security analysts had previously considered it too difficult to infect DNS records. The process is like a race between a good guy and bad guy vying for a secret number transaction ID. "You can get there first," he told Cnet, "but you can't cross finish line unless you have the secret number."
Before the patch, he said, the bad guy had a 1 in 65,000 chance of winning the race because the ID is based partly on the port number used; now, with the patch, chances are lowered to 1 in more than two billion. Kaminsky said that hackers have much to gain from exploiting DNS, which is deeply embedded in our lives according to Cnet. There are three distinct periods of computer hacking Kaminsky said. The first was attacking servers like FTP and Telnet; the second was browsers including Javascript and ActiveX; the third age is about to begin, where attacking everything will be possible.
Kaminsky has been urging IT workers to implement patches to protect this potentially dangerous loophole, noting that only roughly 85 percent of Fortune 500 companies have patched their networks, almost a month after the flaw was initially found.
Reads: 2171 | Category: General | Source: TheWHIR : Web Host Industry Reviews
URL source: http://www.thewhir.com/marketwatch/080708_Kaminsky_Explains_DNS_Attacks.cfm
Want to add a website news or press release ? Just do it, it's free! Use add web hosting news!
📅 - 
📅 - 
📅 - 
📅 - 
📅 -