DNS "Cache Poisoning" Hack

[knguyen]

Dan Kaminsky made headlines last Tuesday when he disclosed a rather dangerous security bug in the domain name system (DNS) software used around the world and one of the key pieces of the Internet.

This story made headlines worldwide because the bug affects both Open Sauce and commercial, proprietary DNS servers. By using a technique dubbed as "Cache Poisoning" hackers could redirect visitors of any web site name to a rogue server on any other IP address.

You can check if your current DNS servers you are using has this vulnerability by using the DNS Checker from DoxPara Research

[knguyen]

Quote:

Originally Posted by knguyen

Dan Kaminsky made headlines last Tuesday when he disclosed a rather dangerous security bug in the domain name system (DNS) software used around the world and one of the key pieces of the Internet.

So who is this Dan Kaminsky?
Dan Kaminsky has spent the better part of a decade analyzing computer security issues with the Fortune 500. Formerly of Cisco and Avaya, Dan is presently the Director of Penetration Testing for IOActive, Inc., where he consults for a wide range of companies, including Microsoft. Dan is a well known public speaker, with his “Black Ops of TCP/IP” presentations being well attended at many conferences.

Dan focuses on design capabilities and vulnerabilities within many protocols, including DNS, and has used his knowledge of these protocols to detect everything from rootkit distributions across the globe to the presence of web vulnerabilities being injected by ISPs. Most recently, Dan led the charge to repair a significant design issue in the Domain Name System, working with engineers around the world on an unprecedented Massive Multivendor patch.

Copy Past from: Bio : DoxPara Research