DNS Poisoning and Mal-ads?
After publishing our SMS notification and sending our newsletter subscribers notice to patch, I thought about something that may or may not be related.
The entire tech world is a buzz after the unintentional leak of security researcher Dan Kaminsky’s blog post about the vulnerability in the DNS. The frenzy has been created because the vulnerability is now in the wild. It’s out there. Exploitable on any unpatched system.
While talking about this with my marketing guru, I was explaining to him how this looks so much like what happened to him that prompted our publishing the Mal-ads report on June 15th. While he acted quickly in stopping the scan by closing all the browsers, his DNS cache was poisoned and he only noticed it because he kept getting redirected to YouTube in Italy. (He doesn’t surf much right now because of our celebration planning!)
I had to clear his cache before his browser would start working correctly.
So, I’m putting it out there….. is it possible that this mal-ad could have been exploiting this already?
Something to think about!
Comments welcome!
Debbie
3 Responses to “DNS Poisoning and Mal-ads?”
Leave a Reply
 |
 |
 |
|
||
 |
|
 |
|
||
For your records: It must have been 10 years ago that I planned to set-up a “back-up” system should the vulnerable DNS system “fail” – At the time I was not concerned about the “how”. I registered a website and even protected the name as a Trademark. Someone didn’t want this to happen because guess what? The domain registrar “glitched” my renewal and within milliseconds the domain was owned by a company registered in the comfortable jurisdiction of our economic adversaries. For your records…
Reply
[...] DNS [...]
Just want to tell you thanks for all the great info found on your blog, even helped me with my work recently
keep it up!
Reply