|
|
|
archives If you want an RSS feed try this
Wednesday, May 11, 2005DNS BotNet attacks stay one jump aheadDNS poisoning exploits are being used in support of phishing and pharming attacks by on line scammers. The end result is phishing sites that are much harder to shut down. The scammers are now using botnet to host the phishing web site clone and the DNS servers relating to the compromised site's domain. Because the site and the DNS servers are hosted on more than one machine they can be difficult to shut down as the servers will continually be moved to another host or IP address. It's the original DNS poison attack that's the root of this exlpoit strategy; companies running ecommerce sites must take the initiative and manage their own DNS. Related Links Phishers turn DNS against authorities Secure fault tolerant DNS Servers may be the answer SANS DNS Poisoning briefing posted by Robert Campbell 7:45 PM
|
